Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-21536 (GCVE-0-2024-21536)
Vulnerability from cvelistv5
Published
2024-10-19 05:00
Modified
2024-10-21 16:31
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- CWE-400 - Denial of Service (DoS)
Summary
Versions of the package http-proxy-middleware before 2.0.7, from 3.0.0 and before 3.0.3 are vulnerable to Denial of Service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. An attacker could kill the Node.js process and crash the server by making requests to certain paths.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| n/a | http-proxy-middleware |
Version: 0 ≤ Version: 3.0.0 ≤ |
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:a:chimurai:http-proxy-middleware:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "http-proxy-middleware",
"vendor": "chimurai",
"versions": [
{
"lessThan": "2.0.7",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"lessThan": "3.0.3",
"status": "affected",
"version": "3.0.0",
"versionType": "semver"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-21536",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-21T15:20:45.568615Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-21T16:31:29.125Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "http-proxy-middleware",
"vendor": "n/a",
"versions": [
{
"lessThan": "2.0.7",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"lessThan": "3.0.3",
"status": "affected",
"version": "3.0.0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Marc Hassan"
}
],
"descriptions": [
{
"lang": "en",
"value": "Versions of the package http-proxy-middleware before 2.0.7, from 3.0.0 and before 3.0.3 are vulnerable to Denial of Service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. An attacker could kill the Node.js process and crash the server by making requests to certain paths."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-400",
"description": "Denial of Service (DoS)",
"lang": "en"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-10-21T11:22:36.064Z",
"orgId": "bae035ff-b466-4ff4-94d0-fc9efd9e1730",
"shortName": "snyk"
},
"references": [
{
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
},
{
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "bae035ff-b466-4ff4-94d0-fc9efd9e1730",
"assignerShortName": "snyk",
"cveId": "CVE-2024-21536",
"datePublished": "2024-10-19T05:00:04.056Z",
"dateReserved": "2023-12-22T12:33:20.123Z",
"dateUpdated": "2024-10-21T16:31:29.125Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2024-21536\",\"sourceIdentifier\":\"report@snyk.io\",\"published\":\"2024-10-19T05:15:13.097\",\"lastModified\":\"2024-11-01T18:03:15.897\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Versions of the package http-proxy-middleware before 2.0.7, from 3.0.0 and before 3.0.3 are vulnerable to Denial of Service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. An attacker could kill the Node.js process and crash the server by making requests to certain paths.\"},{\"lang\":\"es\",\"value\":\"Las versiones del paquete http-proxy-middleware anteriores a la 2.0.7, a la 3.0.0 y a la 3.0.3 es vulnerable a un ataque de denegaci\u00f3n de servicio (DoS) debido a un error UnhandledPromiseRejection generado por micromatch. Un atacante podr\u00eda matar el proceso Node.js y bloquear el servidor al realizar solicitudes a determinadas rutas.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"report@snyk.io\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"report@snyk.io\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-400\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:chimurai:http-proxy-middleware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.0.7\",\"matchCriteriaId\":\"A1C31D2C-0CB7-4D28-8658-42632A65F7F3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:chimurai:http-proxy-middleware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.0.0\",\"versionEndExcluding\":\"3.0.3\",\"matchCriteriaId\":\"A89EB4F5-1978-4172-A52D-8504F87E110E\"}]}]}],\"references\":[{\"url\":\"https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a\",\"source\":\"report@snyk.io\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5\",\"source\":\"report@snyk.io\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22\",\"source\":\"report@snyk.io\",\"tags\":[\"Patch\"]},{\"url\":\"https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906\",\"source\":\"report@snyk.io\",\"tags\":[\"Third Party Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-21536\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"poc\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-10-21T15:20:45.568615Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:chimurai:http-proxy-middleware:*:*:*:*:*:*:*:*\"], \"vendor\": \"chimurai\", \"product\": \"http-proxy-middleware\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"2.0.7\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"3.0.0\", \"lessThan\": \"3.0.3\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-10-21T15:47:24.380Z\"}}], \"cna\": {\"credits\": [{\"lang\": \"en\", \"value\": \"Marc Hassan\"}], \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"n/a\", \"product\": \"http-proxy-middleware\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"2.0.7\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"3.0.0\", \"lessThan\": \"3.0.3\", \"versionType\": \"semver\"}]}], \"references\": [{\"url\": \"https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906\"}, {\"url\": \"https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a\"}, {\"url\": \"https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22\"}, {\"url\": \"https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Versions of the package http-proxy-middleware before 2.0.7, from 3.0.0 and before 3.0.3 are vulnerable to Denial of Service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. An attacker could kill the Node.js process and crash the server by making requests to certain paths.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"cweId\": \"CWE-400\", \"description\": \"Denial of Service (DoS)\"}]}], \"providerMetadata\": {\"orgId\": \"bae035ff-b466-4ff4-94d0-fc9efd9e1730\", \"shortName\": \"snyk\", \"dateUpdated\": \"2024-10-21T11:22:36.064Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-21536\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-10-21T16:31:29.125Z\", \"dateReserved\": \"2023-12-22T12:33:20.123Z\", \"assignerOrgId\": \"bae035ff-b466-4ff4-94d0-fc9efd9e1730\", \"datePublished\": \"2024-10-19T05:00:04.056Z\", \"assignerShortName\": \"snyk\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
rhsa-2024_10917
Vulnerability from csaf_redhat
Published
2024-12-10 11:04
Modified
2025-01-06 18:54
Summary
Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.4 release
Notes
Topic
A new version of Red Hat OpenShift distributed tracing platform (Jaeger) has been released
Details
Red Hat OpenShift distributed tracing platform based on Jaeger. Jaeger is a project inspired by Dapper and OpenZipkin. It is a distributed tracing system released as open source by Uber Technologies. It is used for monitoring and troubleshooting microservices-based distributed systems.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A new version of Red Hat OpenShift distributed tracing platform (Jaeger) has been released",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift distributed tracing platform based on Jaeger. Jaeger is a project inspired by Dapper and OpenZipkin. It is a distributed tracing system released as open source by Uber Technologies. It is used for monitoring and troubleshooting microservices-based distributed systems.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10917",
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/distributed_tracing/distributed-tracing-platform-jaeger",
"url": "https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/distributed_tracing/distributed-tracing-platform-jaeger"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10917.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.4 release",
"tracking": {
"current_release_date": "2025-01-06T18:54:35+00:00",
"generator": {
"date": "2025-01-06T18:54:35+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2024:10917",
"initial_release_date": "2024-12-10T11:04:35+00:00",
"revision_history": [
{
"date": "2024-12-10T11:04:35+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-12-10T11:04:35+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-06T18:54:35+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift distributed tracing 3.4",
"product": {
"name": "Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_distributed_tracing:3.4::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift distributed tracing"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-operator-bundle@sha256%3Ae65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3Afdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Abf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Aaebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Af2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Ab7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Af454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Ac322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Af6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Af5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-45811",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2024-09-17T20:00:49.944925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312930"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ViteJS. `@fs` denies access to files outside of Vite serving allow list. Adding `?import\u0026raw` to the URL bypasses this limitation and returns the file content if it exists, which can allow an attacker to access arbitrary files via the browser.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vite: server.fs.deny is bypassed when using `?import\u0026raw`",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate rather than high severity because it requires specific conditions for exploitation. The attacker must have access to the Vite server, which typically runs in a local development environment rather than in production. Additionally, the bypass allows file access only if the file path is already known or predictable, limiting the attacker\u0027s ability to arbitrarily explore the file system. While it exposes file content outside the Vite serving allow list, the scope of access is constrained, and the impact can be mitigated by proper server configurations and deployment practices.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45811"
},
{
"category": "external",
"summary": "RHBZ#2312930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312930"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45811",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45811"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite",
"url": "https://github.com/vitejs/vite"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/4573a6fd6f1b097fb7296a3e135e0646b996b249",
"url": "https://github.com/vitejs/vite/commit/4573a6fd6f1b097fb7296a3e135e0646b996b249"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/6820bb3b9a54334f3268fc5ee1e967d2e1c0db34",
"url": "https://github.com/vitejs/vite/commit/6820bb3b9a54334f3268fc5ee1e967d2e1c0db34"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/8339d7408668686bae56eaccbfdc7b87612904bd",
"url": "https://github.com/vitejs/vite/commit/8339d7408668686bae56eaccbfdc7b87612904bd"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/a6da45082b6e73ddfdcdcc06bb5414f976a388d6",
"url": "https://github.com/vitejs/vite/commit/a6da45082b6e73ddfdcdcc06bb5414f976a388d6"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/b901438f99e667f76662840826eec91c8ab3b3e7",
"url": "https://github.com/vitejs/vite/commit/b901438f99e667f76662840826eec91c8ab3b3e7"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx",
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx"
}
],
"release_date": "2024-09-17T18:44:12+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vite: server.fs.deny is bypassed when using `?import\u0026raw`"
},
{
"cve": "CVE-2024-45812",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-17T20:20:07.064245+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312935"
}
],
"notes": [
{
"category": "description",
"text": "A DOM clobbering vulnerability was found in ViteJS. This may lead to cross-site scripting (XSS) attacks on websites that include Vite-bundled files configured with an output format of cjs, iife, or umd, and allow users to inject certain scriptless HTML tags without properly sanitizing the name or id attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vite: XSS via DOM Clobbering gadget found in vite bundled scripts",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is classified as moderate severity rather than important due to the specific conditions required to exploit the vulnerability. While DOM Clobbering can lead to Cross-Site Scripting (XSS), the attack surface is relatively limited. Exploitation is contingent on the presence of unsanitized user-supplied HTML with certain scriptless attributes (`name`, `id`) and the use of particular Vite build outputs (`cjs`, `iife`, `umd`). In environments following proper input sanitization practices, the risk is significantly mitigated. Moreover, the vulnerability does not enable direct code injection or compromise by default but rather leverages existing script elements, reducing the likelihood of widespread exploitation compared to higher severity issues.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45812"
},
{
"category": "external",
"summary": "RHBZ#2312935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312935"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45812",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45812"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45812",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45812"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/ade1d89660e17eedfd35652165b0c26905259fad",
"url": "https://github.com/vitejs/vite/commit/ade1d89660e17eedfd35652165b0c26905259fad"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3",
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-09-17T20:15:06.037000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vite: XSS via DOM Clobbering gadget found in vite bundled scripts"
},
{
"cve": "CVE-2024-47068",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-23T16:20:20.383320+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2314249"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Rollup module bundler for JavaScript. Certain versions are susceptible to a DOM Clobbering vulnerability when bundling scripts with properties from `import.meta` such as `import.meta.url` in the `cjs`/`umd`/`iife` format. The DOM Clobbering gadget can lead to cross-site scripting (XSS) in web pages where scriptless attacker-controlled HTML elements are present, for example, an `img` tag with an unsanitized `name` attribute.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate severity rather than important because it requires a specific and relatively uncommon attack vector to exploit\u2014namely, attacker-controlled scriptless HTML elements, such as an unsanitized name attribute in an img tag, which are typically less prevalent in well-maintained web applications. Additionally, the impact is limited to scenarios where import.meta is improperly handled in specific module formats (`cjs`, `umd`, `iife`), and the vulnerability can only lead to cross-site scripting (XSS) under specific conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-47068"
},
{
"category": "external",
"summary": "RHBZ#2314249",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314249"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-47068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47068"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-47068",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47068"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L157-L162",
"url": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L157-L162"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L180-L185",
"url": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L180-L185"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4",
"url": "https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541",
"url": "https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm",
"url": "https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm"
}
],
"release_date": "2024-09-23T16:15:06.947000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS"
}
]
}
RHSA-2024:11256
Vulnerability from csaf_redhat
Published
2024-12-17 11:08
Modified
2025-09-10 15:43
Summary
Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.1
Notes
Topic
Red Hat Trusted Profile Analyzer 1.2.1 release Red Hat Product Security has rated this update as having a security impact of Moderate
Details
Red Hat Trusted Profile Analyzer 1.2.1
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Trusted Profile Analyzer 1.2.1 release Red Hat Product Security has rated this update as having a security impact of Moderate",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Trusted Profile Analyzer 1.2.1",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:11256",
"url": "https://access.redhat.com/errata/RHSA-2024:11256"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1865",
"url": "https://issues.redhat.com/browse/TC-1865"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1873",
"url": "https://issues.redhat.com/browse/TC-1873"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1880",
"url": "https://issues.redhat.com/browse/TC-1880"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1892",
"url": "https://issues.redhat.com/browse/TC-1892"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1928",
"url": "https://issues.redhat.com/browse/TC-1928"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1947",
"url": "https://issues.redhat.com/browse/TC-1947"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1970",
"url": "https://issues.redhat.com/browse/TC-1970"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1868",
"url": "https://issues.redhat.com/browse/TC-1868"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1937",
"url": "https://issues.redhat.com/browse/TC-1937"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1795",
"url": "https://issues.redhat.com/browse/TC-1795"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1824",
"url": "https://issues.redhat.com/browse/TC-1824"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1870",
"url": "https://issues.redhat.com/browse/TC-1870"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2.1/html/release_notes/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2.1/html/release_notes/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-21536",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-21538",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-7254",
"url": "https://access.redhat.com/security/cve/CVE-2024-7254"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_11256.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.1",
"tracking": {
"current_release_date": "2025-09-10T15:43:09+00:00",
"generator": {
"date": "2025-09-10T15:43:09+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.7"
}
},
"id": "RHSA-2024:11256",
"initial_release_date": "2024-12-17T11:08:00+00:00",
"revision_history": [
{
"date": "2024-12-17T11:08:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-03-25T11:08:00+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-10T15:43:09+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Profile Analyzer 1.2",
"product": {
"name": "Red Hat Trusted Profile Analyzer 1.2",
"product_id": "Red Hat Trusted Profile Analyzer 1.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_profile_analyzer:1.2::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Profile Analyzer"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64",
"product": {
"name": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64",
"product_id": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhtpa-guac-rhel9@sha256%3A9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30?arch=amd64\u0026repository_url=registry.redhat.io/rhtpa\u0026tag=1.2.1-1733575106"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64 as a component of Red Hat Trusted Profile Analyzer 1.2",
"product_id": "Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
},
"product_reference": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64",
"relates_to_product_reference": "Red Hat Trusted Profile Analyzer 1.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-7254",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-09-19T01:20:29.981665+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2313454"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Protocol Buffers (protobuf). This issue can allows an attacker to cause a StackOverflow via parsing untrusted Protocol Buffers data containing arbitrarily nested SGROUP tags, leading to unbounded recursion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "protobuf: StackOverflow vulnerability in Protocol Buffers",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue represents a significant severity risk because unbounded recursion in Protocol Buffers parsing can be exploited to trigger stack overflows, leading to Denial of Service (DoS). When parsers, such as `DiscardUnknownFieldsParser` or the Java Protobuf Lite parser, encounter arbitrarily nested groups or deeply recursive map fields, the lack of recursion depth limits can result in uncontrolled stack growth. Attackers can craft malicious protobuf messages that deliberately exceed the stack\u0027s capacity, causing the application to crash or become unresponsive.\n\nThe protobuf package as shipped in RHEL does not include the affected java or kotlin bindings, therefore RHEL is Not Affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-7254"
},
{
"category": "external",
"summary": "RHBZ#2313454",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313454"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-7254",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7254"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-7254",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-7254"
},
{
"category": "external",
"summary": "https://github.com/protocolbuffers/protobuf/commit/cc8b3483a5584b3301e3d43d17eb59704857ffaa",
"url": "https://github.com/protocolbuffers/protobuf/commit/cc8b3483a5584b3301e3d43d17eb59704857ffaa"
}
],
"release_date": "2024-09-19T01:15:10.963000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T11:08:00+00:00",
"details": "It is recommended that existing users of RHTPA 1.2.0 upgrade to 1.2.1. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:11256"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "protobuf: StackOverflow vulnerability in Protocol Buffers"
},
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T11:08:00+00:00",
"details": "It is recommended that existing users of RHTPA 1.2.0 upgrade to 1.2.1. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:11256"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-21538",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-11-08T13:44:29.182678+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324550"
}
],
"notes": [
{
"category": "description",
"text": "A Regular Expression Denial of Service (ReDoS) vulnerability was found in the cross-spawn package for Node.js. Due to improper input sanitization, an attacker can increase CPU usage and crash the program with a large, specially crafted string.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cross-spawn: regular expression denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "RHBZ#2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/pull/160",
"url": "https://github.com/moxystudio/node-cross-spawn/pull/160"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230",
"url": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230"
}
],
"release_date": "2024-11-08T05:00:04.695000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T11:08:00+00:00",
"details": "It is recommended that existing users of RHTPA 1.2.0 upgrade to 1.2.1. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:11256"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "cross-spawn: regular expression denial of service"
}
]
}
rhsa-2025:3929
Vulnerability from csaf_redhat
Published
2025-04-15 19:52
Modified
2025-09-10 15:38
Summary
Red Hat Security Advisory: ACS 4.6 enhancement and security update
Notes
Topic
Updated images are now available for Red Hat Advanced Cluster Security (RHACS).
Details
This release of RHACS fixes the following bugs:
* Fixed an issue where Central could perform image scans even when delegated scanning was enabled, due to a race condition during Sensor reconnection.
* Fixed an issue where mismatched aggregation fields in Compliance tables and widgets caused inconsistent percentage displays.
* Fixed an issue where you ran into Google Kubernetes Engine (GKE) compatibility test failures because the tests still used a deprecated service in RHACS 4.6.
* Fixed an issue where you could see the Configuration Management page despite only having Alert permissions, resulting in role-based access control (RBAC) errors.
* Fixed an issue where verifying multi-signed images failed due to incorrect error handling.
This release of RHACS fixes the following security vulnerabilities:
CVE-2024-21536: Flaw in http-proxy-middleware allowed denial of service through unhandled promise rejections in micromatch.
CVE-2025-30204: Flaw in jwt-go allowed excessive memory allocation during header parsing, which could lead to a possible denial of service.
CVE-2024-57083: Flaw in redoc allowed prototypes in mergeObjects to be tainted, which allowed a denial of service through crafted payloads.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security (RHACS).",
"title": "Topic"
},
{
"category": "general",
"text": "This release of RHACS fixes the following bugs:\n\n* Fixed an issue where Central could perform image scans even when delegated scanning was enabled, due to a race condition during Sensor reconnection.\n\n* Fixed an issue where mismatched aggregation fields in Compliance tables and widgets caused inconsistent percentage displays.\n\n* Fixed an issue where you ran into Google Kubernetes Engine (GKE) compatibility test failures because the tests still used a deprecated service in RHACS 4.6.\n\n* Fixed an issue where you could see the Configuration Management page despite only having Alert permissions, resulting in role-based access control (RBAC) errors.\n\n* Fixed an issue where verifying multi-signed images failed due to incorrect error handling.\n\nThis release of RHACS fixes the following security vulnerabilities:\n\nCVE-2024-21536: Flaw in http-proxy-middleware allowed denial of service through unhandled promise rejections in micromatch.\n\nCVE-2025-30204: Flaw in jwt-go allowed excessive memory allocation during header parsing, which could lead to a possible denial of service.\n\nCVE-2024-57083: Flaw in redoc allowed prototypes in mergeObjects to be tainted, which allowed a denial of service through crafted payloads.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:3929",
"url": "https://access.redhat.com/errata/RHSA-2025:3929"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.6/html/release_notes/release-notes-46",
"url": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.6/html/release_notes/release-notes-46"
},
{
"category": "external",
"summary": "2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "2355865",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2355865"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_3929.json"
}
],
"title": "Red Hat Security Advisory: ACS 4.6 enhancement and security update",
"tracking": {
"current_release_date": "2025-09-10T15:38:05+00:00",
"generator": {
"date": "2025-09-10T15:38:05+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.7"
}
},
"id": "RHSA-2025:3929",
"initial_release_date": "2025-04-15T19:52:32+00:00",
"revision_history": [
{
"date": "2025-04-15T19:52:32+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-04-15T19:52:32+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-10T15:38:05+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHACS 4.6 for RHEL 8",
"product": {
"name": "RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.6::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.6.5-1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.6.5-1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.6.5-1"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.6.5-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.6.5-1"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"relates_to_product_reference": "8Base-RHACS-4.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64 as a component of RHACS 4.6 for RHEL 8",
"product_id": "8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64",
"relates_to_product_reference": "8Base-RHACS-4.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-15T19:52:32+00:00",
"details": "If you are using an earlier version of RHACS 4.6, you are advised to upgrade to patch release 4.6.5.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3929"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-57083",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2025-03-28T21:01:02.993057+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2355865"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in redoc. This vulnerability can allow an attacker to cause a Denial of Service (DoS) via supplying a crafted payload.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "redoc: Prototype Pollution in redoc",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as an Important severity because it allows attackers to exploit a prototype pollution issue in the Module.mergeObjects method by crafting a malicious payload. An attacker can alter the built-in Object.prototype, causing a Denial of Service (DoS) condition, leading to system instability, impacting the availability of the affected system.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-57083"
},
{
"category": "external",
"summary": "RHBZ#2355865",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2355865"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-57083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57083"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-57083",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-57083"
},
{
"category": "external",
"summary": "https://github.com/Redocly/redoc/issues/2499",
"url": "https://github.com/Redocly/redoc/issues/2499"
}
],
"release_date": "2025-03-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-15T19:52:32+00:00",
"details": "If you are using an earlier version of RHACS 4.6, you are advised to upgrade to patch release 4.6.5.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3929"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "redoc: Prototype Pollution in redoc"
},
{
"cve": "CVE-2025-30204",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2025-03-21T22:00:43.818367+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2354195"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "RHBZ#2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3",
"url": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp",
"url": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3553",
"url": "https://pkg.go.dev/vuln/GO-2025-3553"
}
],
"release_date": "2025-03-21T21:42:01.382000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-15T19:52:32+00:00",
"details": "If you are using an earlier version of RHACS 4.6, you are advised to upgrade to patch release 4.6.5.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3929"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have a recommended mitigation at this time.",
"product_ids": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2ff5300da6d6d3c4e3930e22800ae513e70367964a73d07012f707401946c989_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a936b4e9dd1873252fd775aebe0df4e13c0f7edaf8b70842b41e63b3274395c5_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:cf163aa59852d342774011e7e76edee3286d5c2d2b1ec75d894524b0380a03f1_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-central-db-rhel8@sha256:e7fed901c01af2759c4c4b9cc6adc7f938040ef3c3d8d9f4663312200cc110ce_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1216828fbb569d90cd7d8e24ca031b7943b9fe8318cfc7d82afc5ca92c044242_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:1821c4889efb4760683a7eb2011273456e0290ffcdefd3f74cab8be149af6829_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:bb71169ae6b7a37bb152b23213bdc41bfe5ee3f4af7516afa0e04797a65ee238_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-rhel8@sha256:d516bc18fab4994a415d0a83483b0c5cb494532b69849c46794fa3a8989f014a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:691c46fef5b28ad5d9d0a0f7fd8266fe11e5842456e0061530b94d462ce9eb6e_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:8fc763cbcca9cc063defc3af2ae37018e3a0b9aaf49f36ffc53574dc334fc5b8_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:a2b20da53e3f39edef80dd421ef63ed678a412d3693f176770280726da8b8785_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e52a6b01bba06bcb2d72ac44086764f0f1fdff5cc509a14dc99e2f2493901d72_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:3e6cc4455296e470e77428de4501a3753f8201f8f9120416e2f5d9923b653f49_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:a355f88314a82359cd810e495db9dc115db31d5cc1d3a1ac768d8af5c85f6793_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:d9e5bb842c42a8b70a9bf715ed38348b2a0b49ca2f14231c87900ac05fae22c0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-main-rhel8@sha256:f4e2d40b454919fbc2cbaf7c05b03ae139a91113012186742d33b43f3f06f913_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:5d64206745609065f87768999d0043f170bf6d1ff6125c2fb446c1095e2877b3_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:8ed7233224146a80cd6cb5eb38a0163fc97e383bb1cf1d5892a855c6910d10e6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:f61189397263f05214c2d36b4dc0a71a924c2481a1e365b7fb3c71d8dfce6b27_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-operator-bundle@sha256:ffe3e5a19d00090ab1e34a263f8046d9dda5dd3eb7c3bfe7f8c523630eea2f5e_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:0d39a8d67d1891c7a0fd0974ccbe3058f06e7193eb172e2c274bc2a48bf09055_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:2f9b4eb04d86666e14e2dbb8c9256f07b0975c703ad8141d49451f6e78687ff0_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:65b60da1cd8857cda94388ade34fc8d39dd5dcdaea6c9684fac00f3bbca78f45_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-rhel8-operator@sha256:f67d798d415212bccbcd0c7a7515615110fafcdb6552bbf63f450c39fe5f3995_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07555f5f5a95cfc0f52d0c4d3cdb3d2561eb2b8c0c6e2382ef509e39d26d782f_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:91acf7017e8d4779ed97c825d7efa0911cfabeb1522691272927a26231d82606_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c2d35dd6b079897440e6481726fadd47b40d19c66a56fb629631a551670cb6d4_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d09ad7960283a4eec943b1972ede55be7fce871ae12de0a6c66edabd27028cf7_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:499fba961ca391b48d5ded56cb495f4e12c917518c2b0bd35aa35f19eb155dfa_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b7062ee50bf674108a36d62a0cb361aefb19f02b858a00778ca81dcb648fffa6_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c634a2ad9aeccc03e9b3c5677ff77a657004e9563602b00561a65898936cf25c_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ea988842c29a9fe4dd484244d8d5dc42a4c59f8fc8694b0277cefb2f16d3044d_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:06bf71b53e9b0be8b81170e6830d52f4fcff65506c76302df08325e2b6d8d064_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:20cf7f2dac6c78237ae330279499bfd61e1b36141450d055c8973e29f91f4d57_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:6f6affe109b5a27aa482ca039e170c052aa0910fb0ea74e71d09ae721cdec774_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c9127e2bd083f31daaba61481f0b20f350b1ce220c2be68fd9e90140e4552542_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:3177485031ee133793c505dc62cd5dd0368dd08ccdd8d3fd8e2c1c5235812323_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:72725aabbc30533ab7462d2734e458edf5a507f4f4debd94d6666b0b9a870b3d_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:82f27d7a89b86e6a8169051b4c8b73472fc31a18fc32e33e766a1acc42cb2d4c_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-rhel8@sha256:b95cab7b90996835a71c6dc622f5a8ca50d859b62347b8e6069ef445e06f83e8_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0215c995567b9d84b26c86a7b3f5188fefcc6b19c61368a7f2858f2aaf5f6272_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:73699d2d22b5a8e31312af145d4bf81fb0e60d6137c15823baf3b15d72ce31f9_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9e4d46329cb1206ac1cd4f5c9cb880ed1667d482cc3edb5054dbb93aecc388fc_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c1e39493afc64151bfe28fafd25a67bcee6537bcd71be34365d9f34974fe5ef1_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:358c1492882e11fad56cea686cd080efb47bba579ff65065740dcb7a8868bc00_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ab8dfc60413a00ee0775908e6f4539a24d5e431d5226aa5c86600709e9658160_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c60c61bb1478e728497e352922238e148be179d968fd0c5f013a644320559f3e_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d0bb3b155f7677f77f8b8c165686e71f3925243d51c751635882b71fdd57b808_amd64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:5c00eee9d5ec885e9d68a64ab34e6dc15206c52feed3b0f24011272b79bda178_s390x",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6a00c495fd232292d8cf686effb73dbd599e422e4aa77561ea91c90910e60a4a_ppc64le",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:73278d1ada48dbddf597f224ad347c86167bf02cb8f74a1d19847863c2c67063_arm64",
"8Base-RHACS-4.6:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f6c5fc651e644b281e86e029e10b9bf78bbc5622e9fa6394d28ac490fce322ae_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing"
}
]
}
rhsa-2024:9627
Vulnerability from csaf_redhat
Published
2024-11-14 08:35
Modified
2025-09-10 15:29
Summary
Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.6.3
Notes
Topic
Red Hat OpenShift Service Mesh Containers for 2.6.3
This update has a security impact of Moderate. A Common Vulnerability Scoring
System (CVSS) base score, which gives a detailed severity rating, is available
for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation.
Security Fix(es):
* kiali-ossmc-container: Denial of Service [ossm-2.6] (CVE-2024-21536) (OSSM-8280)
* openshift-istio-kiali-rhel8-container: Denial of Service [ossm-2.6] (CVE-2024-21536) (OSSM-8281)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Service Mesh Containers for 2.6.3\n\nThis update has a security impact of Moderate. A Common Vulnerability Scoring\nSystem (CVSS) base score, which gives a detailed severity rating, is available\nfor each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Service Mesh is Red Hat\u0027s distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation.\n\nSecurity Fix(es):\n\n* kiali-ossmc-container: Denial of Service [ossm-2.6] (CVE-2024-21536) (OSSM-8280)\n\n* openshift-istio-kiali-rhel8-container: Denial of Service [ossm-2.6] (CVE-2024-21536) (OSSM-8281)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:9627",
"url": "https://access.redhat.com/errata/RHSA-2024:9627"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_9627.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.6.3",
"tracking": {
"current_release_date": "2025-09-10T15:29:20+00:00",
"generator": {
"date": "2025-09-10T15:29:20+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.7"
}
},
"id": "RHSA-2024:9627",
"initial_release_date": "2024-11-14T08:35:32+00:00",
"revision_history": [
{
"date": "2024-11-14T08:35:32+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-11-14T08:35:32+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-10T15:29:20+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHOSSM 2.6 for RHEL 8",
"product": {
"name": "RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:2.6::el8"
}
}
},
{
"category": "product_name",
"name": "RHOSSM 2.6 for RHEL 9",
"product": {
"name": "RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:2.6::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Service Mesh"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.6.3-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.6.3-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.89.7-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.6.3-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.6.3-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.6.3-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64",
"product_id": "openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel9\u0026tag=2.6.3-6"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.6.3-4"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.6.3-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.6.3-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.89.7-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.6.3-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.6.3-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.6.3-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64",
"product_id": "openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel9\u0026tag=2.6.3-6"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.6.3-4"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.6.3-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.6.3-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.89.7-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.6.3-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.6.3-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.6.3-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x",
"product_id": "openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel9\u0026tag=2.6.3-6"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.6.3-4"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.6.3-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.6.3-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.89.7-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.6.3-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.6.3-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.6.3-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le",
"product_id": "openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel9\u0026tag=2.6.3-6"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.6.3-4"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64 as a component of RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64",
"relates_to_product_reference": "9Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le as a component of RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le",
"relates_to_product_reference": "9Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64 as a component of RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64",
"relates_to_product_reference": "9Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x as a component of RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x",
"relates_to_product_reference": "9Base-RHOSSM-2.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-14T08:35:32+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9627"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
}
]
}
rhsa-2024_10962
Vulnerability from csaf_redhat
Published
2024-12-11 16:47
Modified
2025-01-06 18:54
Summary
Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.4 release
Notes
Topic
A new version of Red Hat OpenShift distributed tracing platform (Jaeger) has been released
Details
Red Hat OpenShift distributed tracing platform based on Jaeger. Jaeger is a project inspired by Dapper and OpenZipkin. It is a distributed tracing system released as open source by Uber Technologies. It is used for monitoring and troubleshooting microservices-based distributed systems.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A new version of Red Hat OpenShift distributed tracing platform (Jaeger) has been released",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift distributed tracing platform based on Jaeger. Jaeger is a project inspired by Dapper and OpenZipkin. It is a distributed tracing system released as open source by Uber Technologies. It is used for monitoring and troubleshooting microservices-based distributed systems.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10962",
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/distributed_tracing/distributed-tracing-platform-jaeger",
"url": "https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/distributed_tracing/distributed-tracing-platform-jaeger"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10962.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.4 release",
"tracking": {
"current_release_date": "2025-01-06T18:54:46+00:00",
"generator": {
"date": "2025-01-06T18:54:46+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2024:10962",
"initial_release_date": "2024-12-11T16:47:10+00:00",
"revision_history": [
{
"date": "2024-12-11T16:47:10+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-12-11T16:47:10+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-06T18:54:46+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift distributed tracing 3.4",
"product": {
"name": "Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_distributed_tracing:3.4::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift distributed tracing"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Aeebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-operator-bundle@sha256%3A44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3Abf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Afd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Ac254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Ada3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3Aa7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Ab7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Afed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Ae8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Aceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3Ac81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Ae537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Abb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3Ae7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3Ab541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3Ab0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3A44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Ab9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3Afe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-45811",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2024-09-17T20:00:49.944925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312930"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ViteJS. `@fs` denies access to files outside of Vite serving allow list. Adding `?import\u0026raw` to the URL bypasses this limitation and returns the file content if it exists, which can allow an attacker to access arbitrary files via the browser.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vite: server.fs.deny is bypassed when using `?import\u0026raw`",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate rather than high severity because it requires specific conditions for exploitation. The attacker must have access to the Vite server, which typically runs in a local development environment rather than in production. Additionally, the bypass allows file access only if the file path is already known or predictable, limiting the attacker\u0027s ability to arbitrarily explore the file system. While it exposes file content outside the Vite serving allow list, the scope of access is constrained, and the impact can be mitigated by proper server configurations and deployment practices.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45811"
},
{
"category": "external",
"summary": "RHBZ#2312930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312930"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45811",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45811"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite",
"url": "https://github.com/vitejs/vite"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/4573a6fd6f1b097fb7296a3e135e0646b996b249",
"url": "https://github.com/vitejs/vite/commit/4573a6fd6f1b097fb7296a3e135e0646b996b249"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/6820bb3b9a54334f3268fc5ee1e967d2e1c0db34",
"url": "https://github.com/vitejs/vite/commit/6820bb3b9a54334f3268fc5ee1e967d2e1c0db34"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/8339d7408668686bae56eaccbfdc7b87612904bd",
"url": "https://github.com/vitejs/vite/commit/8339d7408668686bae56eaccbfdc7b87612904bd"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/a6da45082b6e73ddfdcdcc06bb5414f976a388d6",
"url": "https://github.com/vitejs/vite/commit/a6da45082b6e73ddfdcdcc06bb5414f976a388d6"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/b901438f99e667f76662840826eec91c8ab3b3e7",
"url": "https://github.com/vitejs/vite/commit/b901438f99e667f76662840826eec91c8ab3b3e7"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx",
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx"
}
],
"release_date": "2024-09-17T18:44:12+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vite: server.fs.deny is bypassed when using `?import\u0026raw`"
},
{
"cve": "CVE-2024-45812",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-17T20:20:07.064245+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312935"
}
],
"notes": [
{
"category": "description",
"text": "A DOM clobbering vulnerability was found in ViteJS. This may lead to cross-site scripting (XSS) attacks on websites that include Vite-bundled files configured with an output format of cjs, iife, or umd, and allow users to inject certain scriptless HTML tags without properly sanitizing the name or id attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vite: XSS via DOM Clobbering gadget found in vite bundled scripts",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is classified as moderate severity rather than important due to the specific conditions required to exploit the vulnerability. While DOM Clobbering can lead to Cross-Site Scripting (XSS), the attack surface is relatively limited. Exploitation is contingent on the presence of unsanitized user-supplied HTML with certain scriptless attributes (`name`, `id`) and the use of particular Vite build outputs (`cjs`, `iife`, `umd`). In environments following proper input sanitization practices, the risk is significantly mitigated. Moreover, the vulnerability does not enable direct code injection or compromise by default but rather leverages existing script elements, reducing the likelihood of widespread exploitation compared to higher severity issues.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45812"
},
{
"category": "external",
"summary": "RHBZ#2312935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312935"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45812",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45812"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45812",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45812"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/ade1d89660e17eedfd35652165b0c26905259fad",
"url": "https://github.com/vitejs/vite/commit/ade1d89660e17eedfd35652165b0c26905259fad"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3",
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-09-17T20:15:06.037000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vite: XSS via DOM Clobbering gadget found in vite bundled scripts"
},
{
"cve": "CVE-2024-47068",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-23T16:20:20.383320+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2314249"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Rollup module bundler for JavaScript. Certain versions are susceptible to a DOM Clobbering vulnerability when bundling scripts with properties from `import.meta` such as `import.meta.url` in the `cjs`/`umd`/`iife` format. The DOM Clobbering gadget can lead to cross-site scripting (XSS) in web pages where scriptless attacker-controlled HTML elements are present, for example, an `img` tag with an unsanitized `name` attribute.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate severity rather than important because it requires a specific and relatively uncommon attack vector to exploit\u2014namely, attacker-controlled scriptless HTML elements, such as an unsanitized name attribute in an img tag, which are typically less prevalent in well-maintained web applications. Additionally, the impact is limited to scenarios where import.meta is improperly handled in specific module formats (`cjs`, `umd`, `iife`), and the vulnerability can only lead to cross-site scripting (XSS) under specific conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-47068"
},
{
"category": "external",
"summary": "RHBZ#2314249",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314249"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-47068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47068"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-47068",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47068"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L157-L162",
"url": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L157-L162"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L180-L185",
"url": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L180-L185"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4",
"url": "https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541",
"url": "https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm",
"url": "https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm"
}
],
"release_date": "2024-09-23T16:15:06.947000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS"
}
]
}
rhsa-2025:1249
Vulnerability from csaf_redhat
Published
2025-02-10 18:38
Modified
2025-09-10 15:33
Summary
Red Hat Security Advisory: updated discovery container images
Notes
Topic
Updated container images are now available for Discovery 1.12.
Details
The Discovery container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).
Dockerfiles and scripts should be amended either to refer to these new images specifically, or to the latest images generally.
Fixed CVEs:
CVE-2024-39338
CVE-2024-56201
CVE-2024-45590
CVE-2024-41991
CVE-2024-42005
CVE-2024-41989
CVE-2024-8775
CVE-2024-43799
CVE-2024-43796
CVE-2024-43800
CVE-2024-45296
CVE-2024-43788
CVE-2024-21536
CVE-2024-56326
CVE-2024-21538
CVE-2020-11023
CVE-2024-55565
CVE-2023-44270
CVE-2024-6485
CVE-2024-53907
CVE-2024-56374
CVE-2024-52798
CVE-2024-31449
CVE-2024-46981
CVE-2024-31228
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated container images are now available for Discovery 1.12.",
"title": "Topic"
},
{
"category": "general",
"text": "The Discovery container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to these new images specifically, or to the latest images generally.\n\nFixed CVEs:\nCVE-2024-39338\nCVE-2024-56201\nCVE-2024-45590\nCVE-2024-41991\nCVE-2024-42005\nCVE-2024-41989\nCVE-2024-8775\nCVE-2024-43799\nCVE-2024-43796\nCVE-2024-43800\nCVE-2024-45296\nCVE-2024-43788\nCVE-2024-21536\nCVE-2024-56326\nCVE-2024-21538\nCVE-2020-11023\nCVE-2024-55565\nCVE-2023-44270\nCVE-2024-6485\nCVE-2024-53907\nCVE-2024-56374\nCVE-2024-52798\nCVE-2024-31449\nCVE-2024-46981\nCVE-2024-31228",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:1249",
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "DISCOVERY-895",
"url": "https://issues.redhat.com/browse/DISCOVERY-895"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_1249.json"
}
],
"title": "Red Hat Security Advisory: updated discovery container images",
"tracking": {
"current_release_date": "2025-09-10T15:33:17+00:00",
"generator": {
"date": "2025-09-10T15:33:17+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.7"
}
},
"id": "RHSA-2025:1249",
"initial_release_date": "2025-02-10T18:38:39+00:00",
"revision_history": [
{
"date": "2025-02-10T18:38:39+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-02-10T18:38:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-10T15:33:17+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Discovery 1 for RHEL 9",
"product": {
"name": "Discovery 1 for RHEL 9",
"product_id": "9Base-discovery-1",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:discovery:1.0::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Discovery"
},
{
"branches": [
{
"category": "product_version",
"name": "discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"product": {
"name": "discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"product_id": "discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"product_identification_helper": {
"purl": "pkg:oci/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771?arch=amd64\u0026repository_url=registry.redhat.io/discovery/discovery-server-rhel9\u0026tag=1.12.0-1"
}
}
},
{
"category": "product_version",
"name": "discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64",
"product": {
"name": "discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64",
"product_id": "discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a?arch=amd64\u0026repository_url=registry.redhat.io/discovery/discovery-ui-rhel9\u0026tag=1.12.0-1"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"product": {
"name": "discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"product_id": "discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"product_identification_helper": {
"purl": "pkg:oci/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70?arch=arm64\u0026repository_url=registry.redhat.io/discovery/discovery-server-rhel9\u0026tag=1.12.0-1"
}
}
},
{
"category": "product_version",
"name": "discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"product": {
"name": "discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"product_id": "discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c?arch=arm64\u0026repository_url=registry.redhat.io/discovery/discovery-ui-rhel9\u0026tag=1.12.0-1"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64 as a component of Discovery 1 for RHEL 9",
"product_id": "9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64"
},
"product_reference": "discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"relates_to_product_reference": "9Base-discovery-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64 as a component of Discovery 1 for RHEL 9",
"product_id": "9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64"
},
"product_reference": "discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"relates_to_product_reference": "9Base-discovery-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64 as a component of Discovery 1 for RHEL 9",
"product_id": "9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64"
},
"product_reference": "discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"relates_to_product_reference": "9Base-discovery-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64 as a component of Discovery 1 for RHEL 9",
"product_id": "9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
},
"product_reference": "discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64",
"relates_to_product_reference": "9Base-discovery-1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-11023",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2020-06-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1850004"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jQuery. HTML containing \\\u003coption\\\u003e elements from untrusted sources are passed, even after sanitizing, to one of jQuery\u0027s DOM manipulation methods, which may execute untrusted code. The highest threat from this vulnerability is to data confidentiality and integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jquery: Untrusted code execution via \u003coption\u003e tag in HTML passed to DOM manipulation methods",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Enterprise Linux versions 6, 7, and 8 ship a vulnerable version of JQuery in the `pcs` component. As PCS does not accept untrusted input, the vulnerable code cannot be controlled by an attacker.\n\nMultiple Red Hat offerings use doxygen to build documentation. During this process an affected jquery.js file can be included in the resulting package. The \u0027gcc\u0027 and \u0027tbb\u0027 packages were potentially vulnerable via this method.\n\nOpenShift Container Platform 4 is not affected because even though it uses the \u0027gcc\u0027 component, vulnerable code is limited within the libstdc++-docs rpm package, which is not shipped.\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-79: Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027) vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nStatic code analysis controls ensure that security flaws, including XSS vulnerabilities, are detected early in development by scanning code for improper input handling. This prevents vulnerable code from reaching production and encourages our developers to follow secure coding practices. System monitoring controls play a crucial role in detecting and responding to XSS attacks by analyzing logs, monitoring user behavior, and generating alerts for suspicious activity. Meanwhile, AWS WAF (Web Application Firewall) adds an extra layer of defense by filtering and blocking malicious input before it reaches the platform and/or application. Together, these controls create a defense-in-depth approach, reducing the risk of XSS exploitation by preventing, detecting, and mitigating attacks at multiple levels.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-11023"
},
{
"category": "external",
"summary": "RHBZ#1850004",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1850004"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-11023",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11023"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-11023",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11023"
},
{
"category": "external",
"summary": "https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/",
"url": "https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2020-04-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-01-23T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jquery: Untrusted code execution via \u003coption\u003e tag in HTML passed to DOM manipulation methods"
},
{
"cve": "CVE-2023-44270",
"cwe": {
"id": "CWE-93",
"name": "Improper Neutralization of CRLF Sequences (\u0027CRLF Injection\u0027)"
},
"discovery_date": "2024-11-18T14:11:50.400987+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2326998"
}
],
"notes": [
{
"category": "description",
"text": "An issue was discovered in PostCSS before 8.4.31. The vulnerability affects linters using PostCSS to parse external untrusted CSS. An attacker can prepare CSS in such a way that it will contains parts parsed by PostCSS as a CSS comment. After processing by PostCSS, it will be included in the PostCSS output in CSS nodes (rules, properties) despite being included in a comment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "PostCSS: Improper input validation in PostCSS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-44270"
},
{
"category": "external",
"summary": "RHBZ#2326998",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2326998"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-44270",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44270"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44270",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44270"
},
{
"category": "external",
"summary": "https://github.com/github/advisory-database/issues/2820",
"url": "https://github.com/github/advisory-database/issues/2820"
},
{
"category": "external",
"summary": "https://github.com/postcss/postcss/blob/main/lib/tokenize.js#L25",
"url": "https://github.com/postcss/postcss/blob/main/lib/tokenize.js#L25"
},
{
"category": "external",
"summary": "https://github.com/postcss/postcss/commit/58cc860b4c1707510c9cd1bc1fa30b423a9ad6c5",
"url": "https://github.com/postcss/postcss/commit/58cc860b4c1707510c9cd1bc1fa30b423a9ad6c5"
},
{
"category": "external",
"summary": "https://github.com/postcss/postcss/releases/tag/8.4.31",
"url": "https://github.com/postcss/postcss/releases/tag/8.4.31"
}
],
"release_date": "2023-09-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "There\u0027s no known mitigation for this issue. Red Hat recommends to not parse untrusted CSS input using PostCSS.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "PostCSS: Improper input validation in PostCSS"
},
{
"cve": "CVE-2024-6485",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-07-11T17:30:47+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2297388"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in bootstrap associated with the data-loading-text attribute within the button plugin. This vulnerability allows malicious JavaScript code to be injected into the attribute, which is then executed when the button\u0027s loading state is triggered.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "bootstrap: Cross-Site Scripting via button plugin on bootstrap",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-6485"
},
{
"category": "external",
"summary": "RHBZ#2297388",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2297388"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-6485",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6485"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-6485",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-6485"
},
{
"category": "external",
"summary": "https://www.herodevs.com/vulnerability-directory/cve-2024-6485",
"url": "https://www.herodevs.com/vulnerability-directory/cve-2024-6485"
}
],
"release_date": "2024-07-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "bootstrap: Cross-Site Scripting via button plugin on bootstrap"
},
{
"cve": "CVE-2024-8775",
"cwe": {
"id": "CWE-532",
"name": "Insertion of Sensitive Information into Log File"
},
"discovery_date": "2024-09-13T08:31:27.781000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312119"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Ansible, where sensitive information stored in Ansible Vault files can be exposed in plaintext during the execution of a playbook. This occurs when using tasks such as include_vars to load vaulted variables without setting the no_log: true parameter, resulting in sensitive data being printed in the playbook output or logs. This can lead to the unintentional disclosure of secrets like passwords or API keys, compromising security and potentially allowing unauthorized access or actions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ansible-core: Exposure of Sensitive Information in Ansible Vault Files Due to Improper Logging",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is classified as moderate rather than important because while it does expose sensitive information during playbook execution, the exposure is limited to logs and output generated during the run, which is typically accessible only to authorized users with sufficient privileges. The flaw does not result in an immediate or direct compromise of systems, as no remote exploitation vector is introduced. Additionally, the risk can be mitigated through proper configuration (`no_log: true`) and access control measures, reducing the likelihood of unauthorized access to the logged data. However, the unintentional disclosure of secrets like passwords or API keys still presents a potential risk for privilege escalation or lateral movement within an environment, justifying a moderate severity rating.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-8775"
},
{
"category": "external",
"summary": "RHBZ#2312119",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312119"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-8775",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8775"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-8775",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-8775"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-jpxc-vmjf-9fcj",
"url": "https://github.com/advisories/GHSA-jpxc-vmjf-9fcj"
}
],
"release_date": "2024-09-13T08:35:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ansible-core: Exposure of Sensitive Information in Ansible Vault Files Due to Improper Logging"
},
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-21538",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-11-08T13:44:29.182678+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324550"
}
],
"notes": [
{
"category": "description",
"text": "A Regular Expression Denial of Service (ReDoS) vulnerability was found in the cross-spawn package for Node.js. Due to improper input sanitization, an attacker can increase CPU usage and crash the program with a large, specially crafted string.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cross-spawn: regular expression denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "RHBZ#2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/pull/160",
"url": "https://github.com/moxystudio/node-cross-spawn/pull/160"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230",
"url": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230"
}
],
"release_date": "2024-11-08T05:00:04.695000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "cross-spawn: regular expression denial of service"
},
{
"cve": "CVE-2024-31228",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-10-07T20:01:32.319599+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2317058"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Redis. This flaw allows authenticated users to trigger a denial of service by using specially crafted, long string match patterns on supported commands such as `KEYS`, `SCAN`, `PSUBSCRIBE`, `FUNCTION LIST`, `COMMAND LIST`, and ACL definitions. Matching of extremely long patterns may result in unbounded recursion, leading to stack overflow and process crashes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "redis: Denial-of-service due to unbounded pattern matching in Redis",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-31228"
},
{
"category": "external",
"summary": "RHBZ#2317058",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2317058"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-31228",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-31228"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-31228",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-31228"
},
{
"category": "external",
"summary": "https://github.com/redis/redis/commit/9317bf64659b33166a943ec03d5d9b954e86afb0",
"url": "https://github.com/redis/redis/commit/9317bf64659b33166a943ec03d5d9b954e86afb0"
},
{
"category": "external",
"summary": "https://github.com/redis/redis/security/advisories/GHSA-66gq-c942-6976",
"url": "https://github.com/redis/redis/security/advisories/GHSA-66gq-c942-6976"
}
],
"release_date": "2024-10-07T19:51:06.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "redis: Denial-of-service due to unbounded pattern matching in Redis"
},
{
"cve": "CVE-2024-31449",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-10-07T20:01:19.998028+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2317056"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Redis. This flaw allows an authenticated user to use a specially crafted Lua script to trigger a stack buffer overflow in the bit library, which may lead to remote code execution. The problem exists in all versions of Redis with Lua scripting.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "redis: Lua library commands may lead to stack overflow and RCE in Redis",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-31449"
},
{
"category": "external",
"summary": "RHBZ#2317056",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2317056"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-31449",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-31449"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-31449",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-31449"
},
{
"category": "external",
"summary": "https://github.com/redis/redis/commit/1f7c148be2cbacf7d50aa461c58b871e87cc5ed9",
"url": "https://github.com/redis/redis/commit/1f7c148be2cbacf7d50aa461c58b871e87cc5ed9"
},
{
"category": "external",
"summary": "https://github.com/redis/redis/security/advisories/GHSA-whxg-wx83-85p5",
"url": "https://github.com/redis/redis/security/advisories/GHSA-whxg-wx83-85p5"
}
],
"release_date": "2024-10-07T19:51:08.775000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "redis: Lua library commands may lead to stack overflow and RCE in Redis"
},
{
"cve": "CVE-2024-39338",
"cwe": {
"id": "CWE-918",
"name": "Server-Side Request Forgery (SSRF)"
},
"discovery_date": "2024-08-13T17:21:32.774718+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2304369"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the Axios HTTP Client. It is vulnerable to a server-side request forgery attack (SSRF) caused by unexpected behavior where requests for path-relative URLs get processed as protocol-relative URLs. This flaw allows an attacker to perform arbitrary requests from the server, potentially accessing internal systems or exfiltrating sensitive data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: axios: Server-Side Request Forgery",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as IMPORTANT because it can be exploited remotely with low complexity and without user interaction, it poses a significant risk to confidentiality.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39338"
},
{
"category": "external",
"summary": "RHBZ#2304369",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304369"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39338"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39338",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39338"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/releases",
"url": "https://github.com/axios/axios/releases"
},
{
"category": "external",
"summary": "https://jeffhacks.com/advisories/2024/06/24/CVE-2024-39338.html",
"url": "https://jeffhacks.com/advisories/2024/06/24/CVE-2024-39338.html"
}
],
"release_date": "2024-08-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: axios: Server-Side Request Forgery"
},
{
"cve": "CVE-2024-41989",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-08-02T01:40:06+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2302433"
}
],
"notes": [
{
"category": "description",
"text": "A security issue was found in Django. If \u0027floatformat\u0027 received a string representation of a number in scientific notation with a large exponent, it could lead to significant memory consumption. To avoid this, decimals with more than 200 digits are now returned as is.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python-django: Memory exhaustion in django.utils.numberformat.floatformat()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is categorized as moderate severity rather than important because, while it has the potential to cause significant memory consumption under specific conditions, the likelihood of such a scenario occurring in typical applications is relatively low. The issue arises primarily when processing extremely large numbers in scientific notation, which is not a common use case in most Django applications. Additionally, the impact is localized to the floatformat function, and the issue does not expose sensitive data or compromise the integrity of the application.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-41989"
},
{
"category": "external",
"summary": "RHBZ#2302433",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302433"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-41989",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41989"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-41989",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-41989"
}
],
"release_date": "2024-08-06T13:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "python-django: Memory exhaustion in django.utils.numberformat.floatformat()"
},
{
"cve": "CVE-2024-41991",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-08-02T02:03:22+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2302435"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Django. \u0027urlize\u0027, \u0027urlizetrunc\u0027, and \u0027AdminURLFieldWidget\u0027 may be subject to a denial of service attack via certain inputs with a very large number of Unicode characters.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python-django: Potential denial-of-service vulnerability in django.utils.html.urlize() and AdminURLFieldWidget",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The identified vulnerability in Django\u0027s urlize, urlizetrunc template filters, and the AdminURLFieldWidget widget is classified as moderate severity rather than important due to its specific attack vector and impact. While the flaw allows for a potential denial-of-service (DoS) attack via inputs with a large number of Unicode characters, exploiting this vulnerability requires a significant volume of data to be processed by these components, which is a non-trivial task. Additionally, standard mitigation measures such as input validation, rate limiting, and monitoring can effectively reduce the risk.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-41991"
},
{
"category": "external",
"summary": "RHBZ#2302435",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302435"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-41991",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41991"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-41991",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-41991"
},
{
"category": "external",
"summary": "https://www.djangoproject.com/weblog/2024/aug/06/security-releases/",
"url": "https://www.djangoproject.com/weblog/2024/aug/06/security-releases/"
}
],
"release_date": "2024-08-06T13:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "python-django: Potential denial-of-service vulnerability in django.utils.html.urlize() and AdminURLFieldWidget"
},
{
"cve": "CVE-2024-42005",
"cwe": {
"id": "CWE-89",
"name": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)"
},
"discovery_date": "2024-08-02T02:08:30+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2302436"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Django. The QuerySet.values() and QuerySet.values_list() methods on models with a JSONField were subject to SQL injection in column aliases via a crafted JSON object key as a passed *arg.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python-django: Potential SQL injection in QuerySet.values() and values_list()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is considered of moderate severity rather than high or critical because it requires specific conditions to be exploitable. The potential for SQL injection exists only when QuerySet.values() or values_list() methods are used on models with a JSONField, and an attacker must have control over the JSON object keys passed as arguments. In typical use cases, these methods are often used with predefined or controlled data, limiting the attack surface. Furthermore, the impact is constrained to the manipulation of column aliases, rather than direct injection into more critical parts of the SQL query, reducing the overall risk compared to more direct forms of SQL injection vulnerabilities.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-42005"
},
{
"category": "external",
"summary": "RHBZ#2302436",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302436"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-42005",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42005"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-42005",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-42005"
},
{
"category": "external",
"summary": "https://www.djangoproject.com/weblog/2024/aug/06/security-releases/",
"url": "https://www.djangoproject.com/weblog/2024/aug/06/security-releases/"
}
],
"release_date": "2024-08-06T13:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "python-django: Potential SQL injection in QuerySet.values() and values_list()"
},
{
"cve": "CVE-2024-43788",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-08-27T17:20:06.890123+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2308193"
}
],
"notes": [
{
"category": "description",
"text": "A DOM Clobbering vulnerability was found in Webpack via `AutoPublicPathRuntimeModule`. DOM Clobbering is a type of code-reuse attack where the attacker first embeds a piece of non-script through seemingly benign HTML markups in the webpage, for example, through a post or comment, and leverages the gadgets (pieces of JS code) living in the existing javascript code to transform it into executable code. This vulnerability can lead to Cross-site scripting (XSS) on websites that include Webpack-generated files and allow users to inject certain scriptless HTML tags with improperly sanitized name or ID attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this issue is classified as moderate rather than important due to the specific conditions required for exploitation. DOM Clobbering, while serious, can only be leveraged in environments where an attacker has the ability to inject unsanitized HTML attributes (e.g., `name` or `id`) into a web page. This limits the attack surface to applications that improperly sanitize user input and rely on Webpack-generated files. Furthermore, the exploitation depends on existing vulnerabilities in the sanitization process, rather than the direct execution of arbitrary scripts. As a result, while the issue can lead to XSS, its impact is constrained by the contextual requirement of HTML injection, lowering its overall severity compared to more direct XSS vectors.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43788"
},
{
"category": "external",
"summary": "RHBZ#2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61",
"url": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-08-27T17:15:07.967000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-46981",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-01-06T22:00:39.382359+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2336004"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Redis server. This flaw allows an authenticated user to use a specially crafted Lua script to manipulate the garbage collector, potentially leading to remote code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "redis: Redis\u0027 Lua library commands may lead to remote code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The problem exists in all versions of Redis with Lua scripting.\n\nThis vulnerability in Redis is classified as high severity rather than moderate due to its potential impact and exploitation scope. By manipulating the Lua garbage collector through crafted scripts, an authenticated attacker can achieve remote code execution (RCE), allowing them to execute arbitrary commands on the host system. This compromises not only the integrity and confidentiality of the data stored in Redis but also the underlying server itself. Furthermore, the exploitation does not require direct access to the server binary, making it feasible for attackers to execute through legitimate, albeit malicious, commands.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-46981"
},
{
"category": "external",
"summary": "RHBZ#2336004",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2336004"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-46981",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46981"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-46981",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-46981"
},
{
"category": "external",
"summary": "https://github.com/redis/redis/releases/tag/6.2.17",
"url": "https://github.com/redis/redis/releases/tag/6.2.17"
},
{
"category": "external",
"summary": "https://github.com/redis/redis/releases/tag/7.2.7",
"url": "https://github.com/redis/redis/releases/tag/7.2.7"
},
{
"category": "external",
"summary": "https://github.com/redis/redis/releases/tag/7.4.2",
"url": "https://github.com/redis/redis/releases/tag/7.4.2"
},
{
"category": "external",
"summary": "https://github.com/redis/redis/security/advisories/GHSA-39h2-x6c4-6w4c",
"url": "https://github.com/redis/redis/security/advisories/GHSA-39h2-x6c4-6w4c"
}
],
"release_date": "2025-01-06T21:11:51.687000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "A workaround to mitigate the problem without patching the redis-server executable is to prevent users from executing Lua scripts. This can be done using ACL to restrict EVAL and EVALSHA commands.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "redis: Redis\u0027 Lua library commands may lead to remote code execution"
},
{
"cve": "CVE-2024-52798",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-12-05T23:00:59.020167+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2330689"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp. A path-to-regexp turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: path-to-regexp Unpatched `path-to-regexp` ReDoS in 0.1.x",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability exists because of an incomplete fix for CVE-2024-45296.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52798"
},
{
"category": "external",
"summary": "RHBZ#2330689",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2330689"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52798",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52798"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52798",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52798"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/f01c26a013b1889f0c217c643964513acf17f6a4",
"url": "https://github.com/pillarjs/path-to-regexp/commit/f01c26a013b1889f0c217c643964513acf17f6a4"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-rhx6-c78j-4q9w",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-rhx6-c78j-4q9w"
}
],
"release_date": "2024-12-05T22:45:42.774000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Avoid using two parameters within a single path segment when the separator is not, for example, /:a-:b. Alternatively, you can define the regex used for both parameters and ensure they do not overlap to allow backtracking.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: path-to-regexp Unpatched `path-to-regexp` ReDoS in 0.1.x"
},
{
"cve": "CVE-2024-53907",
"cwe": {
"id": "CWE-1169",
"name": "CWE-1169"
},
"discovery_date": "2024-11-28T02:48:36.215000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2329288"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the Django Web Framework. The strip_tags() and stripbtags template filter may be vulnerable to a potential denial of service (DoS) in cases of a large sequence of nested incomplete HTML entities.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "django: Potential denial-of-service in django.utils.html.strip_tags()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as a Moderate severity because it exposes the strip_tags() method and striptags template filter to a potential denial-of-service attack, malicious input containing large sequences of nested incomplete HTML entities could cause excessive processing, but it does not affect data confidentiality or integrity",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-53907"
},
{
"category": "external",
"summary": "RHBZ#2329288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2329288"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-53907",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53907"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-53907",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-53907"
},
{
"category": "external",
"summary": "https://www.djangoproject.com/weblog/2024/dec/04/security-releases/",
"url": "https://www.djangoproject.com/weblog/2024/dec/04/security-releases/"
}
],
"release_date": "2024-12-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "django: Potential denial-of-service in django.utils.html.strip_tags()"
},
{
"cve": "CVE-2024-55565",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"discovery_date": "2024-12-09T02:00:45.255738+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2331063"
}
],
"notes": [
{
"category": "description",
"text": "nanoid (aka Nano ID) before 5.0.9 mishandles non-integer values. 3.3.8 is also a fixed version.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nanoid: nanoid mishandles non-integer values",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-55565"
},
{
"category": "external",
"summary": "RHBZ#2331063",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2331063"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-55565",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55565"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-55565",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-55565"
},
{
"category": "external",
"summary": "https://github.com/ai/nanoid/compare/3.3.7...3.3.8",
"url": "https://github.com/ai/nanoid/compare/3.3.7...3.3.8"
},
{
"category": "external",
"summary": "https://github.com/ai/nanoid/pull/510",
"url": "https://github.com/ai/nanoid/pull/510"
},
{
"category": "external",
"summary": "https://github.com/ai/nanoid/releases/tag/5.0.9",
"url": "https://github.com/ai/nanoid/releases/tag/5.0.9"
}
],
"release_date": "2024-12-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nanoid: nanoid mishandles non-integer values"
},
{
"cve": "CVE-2024-56201",
"cwe": {
"id": "CWE-150",
"name": "Improper Neutralization of Escape, Meta, or Control Sequences"
},
"discovery_date": "2024-12-23T16:00:38.768252+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2333854"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Jinja2 package. A bug in the Jinja compiler allows an attacker that controls both the content and filename of a template to execute arbitrary Python code, regardless of Jinja\u0027s sandbox being used. An attacker needs to be able to control both the filename and the contents of a template. Whether that is the case depends on the type of application using Jinja. This vulnerability impacts users of applications that execute untrusted templates where the template author can also choose the template filename.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jinja2: Jinja has a sandbox breakout through malicious filenames",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability has rated as a IMPORTANT flaw because an attacker controlling both the template content and filename to execute arbitrary Python code, bypassing the sandbox.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-56201"
},
{
"category": "external",
"summary": "RHBZ#2333854",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333854"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-56201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56201"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-56201",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-56201"
},
{
"category": "external",
"summary": "https://github.com/pallets/jinja/commit/767b23617628419ae3709ccfb02f9602ae9fe51f",
"url": "https://github.com/pallets/jinja/commit/767b23617628419ae3709ccfb02f9602ae9fe51f"
},
{
"category": "external",
"summary": "https://github.com/pallets/jinja/issues/1792",
"url": "https://github.com/pallets/jinja/issues/1792"
},
{
"category": "external",
"summary": "https://github.com/pallets/jinja/releases/tag/3.1.5",
"url": "https://github.com/pallets/jinja/releases/tag/3.1.5"
},
{
"category": "external",
"summary": "https://github.com/pallets/jinja/security/advisories/GHSA-gmj6-6f8f-6699",
"url": "https://github.com/pallets/jinja/security/advisories/GHSA-gmj6-6f8f-6699"
}
],
"release_date": "2024-12-23T15:37:36.110000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "To mitigate this vulnerabilty restrict user-controlled template filenames, ensuring they follow a predefined templates.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jinja2: Jinja has a sandbox breakout through malicious filenames"
},
{
"cve": "CVE-2024-56326",
"cwe": {
"id": "CWE-693",
"name": "Protection Mechanism Failure"
},
"discovery_date": "2024-12-23T16:00:46.619763+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2333856"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Jinja package. In affected versions of Jinja, an oversight in how the Jinja sandboxed environment detects calls to str.format allows an attacker that controls the content of a template to execute arbitrary Python code. To exploit the vulnerability, an attacker needs to control the content of a template. Whether that is the case depends on the type of application using Jinja. This vulnerability impacts users of applications that execute untrusted templates. Jinja\u0027s sandbox does catch calls to str.format and ensures they don\u0027t escape the sandbox. However, storing a reference to a malicious string\u0027s format method is possible, then passing that to a filter that calls it. No such filters are built into Jinja but could be present through custom filters in an application. After the fix, such indirect calls are also handled by the sandbox.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jinja2: Jinja has a sandbox breakout through indirect reference to format method",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as Moderate due to an oversight in Jinja\u0027s sandbox environment, allowing attackers to execute arbitrary Python code through controlled template content. This requires control over template content, making exploitation possible only in specific applications, thus limiting its overall impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-56326"
},
{
"category": "external",
"summary": "RHBZ#2333856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333856"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-56326",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56326"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-56326",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-56326"
},
{
"category": "external",
"summary": "https://github.com/pallets/jinja/commit/48b0687e05a5466a91cd5812d604fa37ad0943b4",
"url": "https://github.com/pallets/jinja/commit/48b0687e05a5466a91cd5812d604fa37ad0943b4"
},
{
"category": "external",
"summary": "https://github.com/pallets/jinja/releases/tag/3.1.5",
"url": "https://github.com/pallets/jinja/releases/tag/3.1.5"
},
{
"category": "external",
"summary": "https://github.com/pallets/jinja/security/advisories/GHSA-q2x7-8rv6-6q7h",
"url": "https://github.com/pallets/jinja/security/advisories/GHSA-q2x7-8rv6-6q7h"
}
],
"release_date": "2024-12-23T15:43:49.400000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jinja2: Jinja has a sandbox breakout through indirect reference to format method"
},
{
"cve": "CVE-2024-56374",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-01-14T20:01:09.167282+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2337996"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Django framework. Lack of upper bound limit enforcement in strings passed when performing IPv6 validation could lead to a potential denial of service attack. The undocumented and private functions `clean_ipv6_address` and `is_valid_ipv6_address` were vulnerable, as was the `django.forms.GenericIPAddressField` form field, which has now been updated to define a `max_length` of 39 characters.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "django: potential denial-of-service vulnerability in IPv6 validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-770: Allocation of Resources Without Limits or Throttling vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nThe platform enforces hardening guidelines to apply the most restrictive settings required for operations, while baseline configurations maintain secure system and software states. A defense-in-depth monitoring strategy includes perimeter firewalls and endpoint protection services that detect excessive resource usage caused by malicious activity or system misconfigurations. In the event of exploitation, process isolation ensures workloads operate in separate environments, preventing any single process from overconsuming CPU or memory and degrading system performance.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-56374"
},
{
"category": "external",
"summary": "RHBZ#2337996",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337996"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-56374",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56374"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-56374",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-56374"
},
{
"category": "external",
"summary": "http://www.openwall.com/lists/oss-security/2025/01/14/2",
"url": "http://www.openwall.com/lists/oss-security/2025/01/14/2"
},
{
"category": "external",
"summary": "https://docs.djangoproject.com/en/dev/releases/security/",
"url": "https://docs.djangoproject.com/en/dev/releases/security/"
},
{
"category": "external",
"summary": "https://groups.google.com/g/django-announce",
"url": "https://groups.google.com/g/django-announce"
},
{
"category": "external",
"summary": "https://www.djangoproject.com/weblog/2025/jan/14/security-releases/",
"url": "https://www.djangoproject.com/weblog/2025/jan/14/security-releases/"
}
],
"release_date": "2025-01-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "django: potential denial-of-service vulnerability in IPv6 validation"
}
]
}
rhsa-2025:3930
Vulnerability from csaf_redhat
Published
2025-04-15 20:29
Modified
2025-09-10 15:38
Summary
Red Hat Security Advisory: RHACS 4.7 security update
Notes
Topic
Updated images are now available for Red Hat Advanced Cluster Security for
Kubernetes (RHACS). The updated image includes security fixes.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
This release of RHACS 4.7.2 includes the following security fixes:
* CVE-2024-21536: Denial of Service vulnerability in the `http-proxy-middleware` package.
* CVE-2025-30204: Excessive memory allocation during header parsing in `golang-jwt` package.
* CVE-2024-57083: Denial of Service vulnerability in the `redoc` package.
For more details about the security issue(s), including the impact, a CVSS
score, and other related information, refer to the CVE page(s) listed in
the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security for\nKubernetes (RHACS). The updated image includes security fixes.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "This release of RHACS 4.7.2 includes the following security fixes:\n\n* CVE-2024-21536: Denial of Service vulnerability in the `http-proxy-middleware` package.\n* CVE-2025-30204: Excessive memory allocation during header parsing in `golang-jwt` package.\n* CVE-2024-57083: Denial of Service vulnerability in the `redoc` package.\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, and other related information, refer to the CVE page(s) listed in\nthe References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:3930",
"url": "https://access.redhat.com/errata/RHSA-2025:3930"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.7/html-single/release_notes/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.7/html-single/release_notes/index"
},
{
"category": "external",
"summary": "2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "2355865",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2355865"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_3930.json"
}
],
"title": "Red Hat Security Advisory: RHACS 4.7 security update",
"tracking": {
"current_release_date": "2025-09-10T15:38:05+00:00",
"generator": {
"date": "2025-09-10T15:38:05+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.7"
}
},
"id": "RHSA-2025:3930",
"initial_release_date": "2025-04-15T20:29:23+00:00",
"revision_history": [
{
"date": "2025-04-15T20:29:23+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-04-15T20:29:23+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-10T15:38:05+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHACS 4.7 for RHEL 8",
"product": {
"name": "RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.7::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.7.2-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.7.2-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.7.2-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.7.2-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.7.2-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.7.2-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.7.2-1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.7.2-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.7.2-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.7.2-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.7.2-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.7.2-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.7.2-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.7.2-1"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.7.2-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.7.2-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.7.2-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.7.2-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.7.2-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.7.2-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.7.2-1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.7.2-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.7.2-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.7.2-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.7.2-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.7.2-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.7.2-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.7.2-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.7.2-1"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64 as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"relates_to_product_reference": "8Base-RHACS-4.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x as a component of RHACS 4.7 for RHEL 8",
"product_id": "8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x",
"relates_to_product_reference": "8Base-RHACS-4.7"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-15T20:29:23+00:00",
"details": "If you are using an earlier version of RHACS 4.7, you are advised to upgrade to this patch release 4.7.2.",
"product_ids": [
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3930"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-57083",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2025-03-28T21:01:02.993057+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2355865"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in redoc. This vulnerability can allow an attacker to cause a Denial of Service (DoS) via supplying a crafted payload.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "redoc: Prototype Pollution in redoc",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as an Important severity because it allows attackers to exploit a prototype pollution issue in the Module.mergeObjects method by crafting a malicious payload. An attacker can alter the built-in Object.prototype, causing a Denial of Service (DoS) condition, leading to system instability, impacting the availability of the affected system.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-57083"
},
{
"category": "external",
"summary": "RHBZ#2355865",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2355865"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-57083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57083"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-57083",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-57083"
},
{
"category": "external",
"summary": "https://github.com/Redocly/redoc/issues/2499",
"url": "https://github.com/Redocly/redoc/issues/2499"
}
],
"release_date": "2025-03-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-15T20:29:23+00:00",
"details": "If you are using an earlier version of RHACS 4.7, you are advised to upgrade to this patch release 4.7.2.",
"product_ids": [
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3930"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "redoc: Prototype Pollution in redoc"
},
{
"cve": "CVE-2025-30204",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2025-03-21T22:00:43.818367+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2354195"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "RHBZ#2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3",
"url": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp",
"url": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3553",
"url": "https://pkg.go.dev/vuln/GO-2025-3553"
}
],
"release_date": "2025-03-21T21:42:01.382000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-15T20:29:23+00:00",
"details": "If you are using an earlier version of RHACS 4.7, you are advised to upgrade to this patch release 4.7.2.",
"product_ids": [
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3930"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have a recommended mitigation at this time.",
"product_ids": [
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:0de55a92684af5e5597531bca9afbcd8e3cce4bfd6bcb172d39199bebbf88e2c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69dbfbae6a11cb3d8c7e015f59b22519fb7676a855ff22327639da9f76dffb2c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:abe1cff91a5593115ab31bda302176a5252fc8dacb6486a33898c70e8be6a305_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ea5a47ccd9b4aa6a9a80baf6ef700c9b42f405e5cae24fccae1ebe543e1ed18c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:01678c9b1acdabaefc734e7eb403767e7924b839c0ad278b495b1228b7661fc3_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:0b03a33fb8bc0c0130416be107484e001607c95bfe517f04585835a69abdaffb_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:85a5849edf4ffe871a4ddde764b730b9273e05796abf6433a16f0431908a435d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-collector-rhel8@sha256:d3cb5a77aa9e23a31a5cb5be55614dee310873508b02fcec5bd41b60c211a216_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:1d8fd1b56ba971b4cac8c062abe5eaa4fab6171b6d6c74fa6f43c1e895083d5f_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:487b319656ad0234222c2a32c307f20622e79bb868bd406322cf26b6867152a1_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:7621a90eac37ec2b2e7390bb8b3fadfa205db80a9059337490c065b0cacb7ab7_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-main-rhel8@sha256:ab337f4f362ba85be4b15e6ab50ba3d10e223c63785595c9b9246c916bd9b9dd_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:053fe3c5bba914a225f969dbb695648fc1bcaf68c1cfea6d60faa9306a308715_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:4c213bf11ecea633090d32797119c435980f29e160bbf502e6eb0efe9690e491_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:567535d4a629980952e42537221a232e24399462c8ffda467c38195ea7afa3e2_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-operator-bundle@sha256:658b3612c93a7c70c6eeb26ba1e2704e770b876fcc1ae17603eaa7f2a14d6d6f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7c112288e7dbfe020ada8a8668da51beac2729fb48fe6e22f059448a0a3fd3fb_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:7fb87a017203fa4d0cfdf5775eff36adbdd0e73a505473025823956ff399c0e4_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:81809dccab3c48f4a7d999115b7277e33a789713728eacd354d1f38afe39bf7a_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-rhel8-operator@sha256:a14cfcc73b961326105bc05e41fef6ab3d40d7e3de71b0f262cdf68b9feffd00_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:03003fe0ef4d34bf4f55b231d276442eba4fdd24f13d931736bfce5b7dfea4f5_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:6f037fb388d9e769aa5e95baaca125393dcb16c017e1f02d4d93b1d07b8fffe0_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a5727838bc5599a282bd2a13c3f21aee153d960cd89c7ba42c2271dddd176bc5_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bb71e49dff08b0b611700089a1761c681b3a7cf37aceb5170d101abcc9eb4de9_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:701e71383caa3c9f4324fce081a3d855b0b40490befe73059639bd3a76edaf2b_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:79adf5f5e810c51ad537dcffc7bbda938c4e0d12553aa1d8febd8585951ff56a_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:af85a1009cb07e6bbe4c2a7c11c1e54cc0d501384ce6d4e1c51ad5eecb45aa38_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:dbd5a6f5e80eef1e067a99b8e65e3fdeb307ed0ed97934677647d40c4bd51dcc_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:14c597dc724cd3f98e513a1c1e2ff3e50b281a246602cee058fbc622e8d92fa7_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:686d6f4c4dd504b14e62fcd03530f091edfffc2be5155891f5d82b9c58e56bd6_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9f437263be063d2e3902109db98ab32f647cfbce50411120e5984f2ab1345f27_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e95da508631c5524f5edc9f70b361e5b0ae338fe4e73e4de624bf15927d9cfcd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:13ec12dbd30b98150decdd24899bac2317ccc8c5c45ee9c63c997cb638f78b9c_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:4b16d5c60cee1cc18761809af0d6ba951798130b42b841bf864d01be23a50a2c_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:7372caa729e72a6918f8402ebae0791c9d78c076e208142ff781552bd30d94d0_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-rhel8@sha256:c0f042494d44b018cc7afc45ad38d03fc1aa8d18de0183f817b3c7574512ec7c_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0b1cb981e4b8a930b29cf2aca2d7664f793b986ee15d1af2f2e130f153c13a9d_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:7577414d812fc586a27d06cd043c5a76a591e139905373694467ed61439a915d_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cfbff24ed9158e4c1742b81868e6f13d3e1d37cdffc003998400c7c67bc89186_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d79700db62eb731d3e86dff75ff2cf919221586e32edc586a4128612c5f2a0e4_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2ccfcbba5b565de58a398894cd1482bc3ae5c093da239267412b84690cd7e003_s390x",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3a749c09ebf4729139bdfbcd43ab071d2808b7d6f2fc7a03505d490000e00e4f_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7c2bf5e8e4a714eb534c16d447794694b1d8b3571c17699610ce8c4e2201ee08_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d7a7f1cfe8c63caa561350a05b0bab834bd97daed9de38d821122156cfac0544_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:8803e128a19be2c0069a2e37b4feefcb64a0b4975fff39c7e354b9573f41a7dd_ppc64le",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:afedcd883b00af7e41efd2f4c3a6fc53f3ef0e945d87430cb65813c807e39217_amd64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:cd857ab339898bb5c1902075a58a7a03d3324c4100b7edc11f8c6026cfde909f_arm64",
"8Base-RHACS-4.7:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f06e68ce3d778bb2a6f77394c78f3cef0eb926286d024f499cc14451dc978c80_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing"
}
]
}
rhsa-2024:10917
Vulnerability from csaf_redhat
Published
2024-12-10 11:04
Modified
2025-09-10 15:43
Summary
Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.4 release
Notes
Topic
A new version of Red Hat OpenShift distributed tracing platform (Jaeger) has been released
Details
Red Hat OpenShift distributed tracing platform based on Jaeger. Jaeger is a project inspired by Dapper and OpenZipkin. It is a distributed tracing system released as open source by Uber Technologies. It is used for monitoring and troubleshooting microservices-based distributed systems.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A new version of Red Hat OpenShift distributed tracing platform (Jaeger) has been released",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift distributed tracing platform based on Jaeger. Jaeger is a project inspired by Dapper and OpenZipkin. It is a distributed tracing system released as open source by Uber Technologies. It is used for monitoring and troubleshooting microservices-based distributed systems.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10917",
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/distributed_tracing/distributed-tracing-platform-jaeger",
"url": "https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/distributed_tracing/distributed-tracing-platform-jaeger"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-21536",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-43796",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-43799",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-43800",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45296",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45590",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45811",
"url": "https://access.redhat.com/security/cve/CVE-2024-45811"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45812",
"url": "https://access.redhat.com/security/cve/CVE-2024-45812"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-47068",
"url": "https://access.redhat.com/security/cve/CVE-2024-47068"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10917.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.4 release",
"tracking": {
"current_release_date": "2025-09-10T15:43:12+00:00",
"generator": {
"date": "2025-09-10T15:43:12+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.7"
}
},
"id": "RHSA-2024:10917",
"initial_release_date": "2024-12-10T11:04:35+00:00",
"revision_history": [
{
"date": "2024-12-10T11:04:35+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-03-25T11:04:35+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-10T15:43:12+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift distributed tracing 3.4",
"product": {
"name": "Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_distributed_tracing:3.4::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift distributed tracing"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-operator-bundle@sha256%3Ae65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3Afdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Abf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Aaebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Af2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Ab7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Af454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Ac322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Af6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Af5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-45811",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2024-09-17T20:00:49.944925+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312930"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ViteJS. `@fs` denies access to files outside of Vite serving allow list. Adding `?import\u0026raw` to the URL bypasses this limitation and returns the file content if it exists, which can allow an attacker to access arbitrary files via the browser.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vite: server.fs.deny is bypassed when using `?import\u0026raw`",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate rather than high severity because it requires specific conditions for exploitation. The attacker must have access to the Vite server, which typically runs in a local development environment rather than in production. Additionally, the bypass allows file access only if the file path is already known or predictable, limiting the attacker\u0027s ability to arbitrarily explore the file system. While it exposes file content outside the Vite serving allow list, the scope of access is constrained, and the impact can be mitigated by proper server configurations and deployment practices.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45811"
},
{
"category": "external",
"summary": "RHBZ#2312930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312930"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45811",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45811"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite",
"url": "https://github.com/vitejs/vite"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/4573a6fd6f1b097fb7296a3e135e0646b996b249",
"url": "https://github.com/vitejs/vite/commit/4573a6fd6f1b097fb7296a3e135e0646b996b249"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/6820bb3b9a54334f3268fc5ee1e967d2e1c0db34",
"url": "https://github.com/vitejs/vite/commit/6820bb3b9a54334f3268fc5ee1e967d2e1c0db34"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/8339d7408668686bae56eaccbfdc7b87612904bd",
"url": "https://github.com/vitejs/vite/commit/8339d7408668686bae56eaccbfdc7b87612904bd"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/a6da45082b6e73ddfdcdcc06bb5414f976a388d6",
"url": "https://github.com/vitejs/vite/commit/a6da45082b6e73ddfdcdcc06bb5414f976a388d6"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/b901438f99e667f76662840826eec91c8ab3b3e7",
"url": "https://github.com/vitejs/vite/commit/b901438f99e667f76662840826eec91c8ab3b3e7"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx",
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx"
}
],
"release_date": "2024-09-17T18:44:12+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vite: server.fs.deny is bypassed when using `?import\u0026raw`"
},
{
"cve": "CVE-2024-45812",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-17T20:20:07.064245+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312935"
}
],
"notes": [
{
"category": "description",
"text": "A DOM clobbering vulnerability was found in ViteJS. This may lead to cross-site scripting (XSS) attacks on websites that include Vite-bundled files configured with an output format of cjs, iife, or umd, and allow users to inject certain scriptless HTML tags without properly sanitizing the name or id attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vite: XSS via DOM Clobbering gadget found in vite bundled scripts",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is classified as moderate severity rather than important due to the specific conditions required to exploit the vulnerability. While DOM Clobbering can lead to Cross-Site Scripting (XSS), the attack surface is relatively limited. Exploitation is contingent on the presence of unsanitized user-supplied HTML with certain scriptless attributes (`name`, `id`) and the use of particular Vite build outputs (`cjs`, `iife`, `umd`). In environments following proper input sanitization practices, the risk is significantly mitigated. Moreover, the vulnerability does not enable direct code injection or compromise by default but rather leverages existing script elements, reducing the likelihood of widespread exploitation compared to higher severity issues.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45812"
},
{
"category": "external",
"summary": "RHBZ#2312935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312935"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45812",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45812"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45812",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45812"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/ade1d89660e17eedfd35652165b0c26905259fad",
"url": "https://github.com/vitejs/vite/commit/ade1d89660e17eedfd35652165b0c26905259fad"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3",
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-09-17T20:15:06.037000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vite: XSS via DOM Clobbering gadget found in vite bundled scripts"
},
{
"cve": "CVE-2024-47068",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-23T16:20:20.383320+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2314249"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Rollup module bundler for JavaScript. Certain versions are susceptible to a DOM Clobbering vulnerability when bundling scripts with properties from `import.meta` such as `import.meta.url` in the `cjs`/`umd`/`iife` format. The DOM Clobbering gadget can lead to cross-site scripting (XSS) in web pages where scriptless attacker-controlled HTML elements are present, for example, an `img` tag with an unsanitized `name` attribute.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate severity rather than important because it requires a specific and relatively uncommon attack vector to exploit\u2014namely, attacker-controlled scriptless HTML elements, such as an unsanitized name attribute in an img tag, which are typically less prevalent in well-maintained web applications. Additionally, the impact is limited to scenarios where import.meta is improperly handled in specific module formats (`cjs`, `umd`, `iife`), and the vulnerability can only lead to cross-site scripting (XSS) under specific conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-47068"
},
{
"category": "external",
"summary": "RHBZ#2314249",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314249"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-47068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47068"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-47068",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47068"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L157-L162",
"url": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L157-L162"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L180-L185",
"url": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L180-L185"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4",
"url": "https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541",
"url": "https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm",
"url": "https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm"
}
],
"release_date": "2024-09-23T16:15:06.947000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS"
}
]
}
RHSA-2024:9627
Vulnerability from csaf_redhat
Published
2024-11-14 08:35
Modified
2025-09-10 15:29
Summary
Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.6.3
Notes
Topic
Red Hat OpenShift Service Mesh Containers for 2.6.3
This update has a security impact of Moderate. A Common Vulnerability Scoring
System (CVSS) base score, which gives a detailed severity rating, is available
for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation.
Security Fix(es):
* kiali-ossmc-container: Denial of Service [ossm-2.6] (CVE-2024-21536) (OSSM-8280)
* openshift-istio-kiali-rhel8-container: Denial of Service [ossm-2.6] (CVE-2024-21536) (OSSM-8281)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Service Mesh Containers for 2.6.3\n\nThis update has a security impact of Moderate. A Common Vulnerability Scoring\nSystem (CVSS) base score, which gives a detailed severity rating, is available\nfor each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Service Mesh is Red Hat\u0027s distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation.\n\nSecurity Fix(es):\n\n* kiali-ossmc-container: Denial of Service [ossm-2.6] (CVE-2024-21536) (OSSM-8280)\n\n* openshift-istio-kiali-rhel8-container: Denial of Service [ossm-2.6] (CVE-2024-21536) (OSSM-8281)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:9627",
"url": "https://access.redhat.com/errata/RHSA-2024:9627"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_9627.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.6.3",
"tracking": {
"current_release_date": "2025-09-10T15:29:20+00:00",
"generator": {
"date": "2025-09-10T15:29:20+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.7"
}
},
"id": "RHSA-2024:9627",
"initial_release_date": "2024-11-14T08:35:32+00:00",
"revision_history": [
{
"date": "2024-11-14T08:35:32+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-11-14T08:35:32+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-10T15:29:20+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHOSSM 2.6 for RHEL 8",
"product": {
"name": "RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:2.6::el8"
}
}
},
{
"category": "product_name",
"name": "RHOSSM 2.6 for RHEL 9",
"product": {
"name": "RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:2.6::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Service Mesh"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.6.3-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.6.3-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.89.7-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.6.3-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.6.3-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.6.3-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64",
"product_id": "openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel9\u0026tag=2.6.3-6"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.6.3-4"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.6.3-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.6.3-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.89.7-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.6.3-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.6.3-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.6.3-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64",
"product_id": "openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel9\u0026tag=2.6.3-6"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.6.3-4"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.6.3-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.6.3-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.89.7-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.6.3-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.6.3-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.6.3-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x",
"product_id": "openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel9\u0026tag=2.6.3-6"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.6.3-4"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.6.3-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.6.3-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.89.7-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.6.3-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.6.3-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.6.3-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le",
"product_id": "openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel9\u0026tag=2.6.3-6"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.6.3-4"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64 as a component of RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64",
"relates_to_product_reference": "9Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le as a component of RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le",
"relates_to_product_reference": "9Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64 as a component of RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64",
"relates_to_product_reference": "9Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x as a component of RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x",
"relates_to_product_reference": "9Base-RHOSSM-2.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-14T08:35:32+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9627"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
}
]
}
rhsa-2024:11255
Vulnerability from csaf_redhat
Published
2024-12-17 10:22
Modified
2025-09-10 15:43
Summary
Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.1
Notes
Topic
Red Hat Trusted Profile Analyzer 1.2.1 release Red Hat Product Security has rated this update as having a security impact of Moderate
Details
Red Hat Trusted Profile Analyzer 1.2.1
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Trusted Profile Analyzer 1.2.1 release Red Hat Product Security has rated this update as having a security impact of Moderate",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Trusted Profile Analyzer 1.2.1",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:11255",
"url": "https://access.redhat.com/errata/RHSA-2024:11255"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1865",
"url": "https://issues.redhat.com/browse/TC-1865"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1873",
"url": "https://issues.redhat.com/browse/TC-1873"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1880",
"url": "https://issues.redhat.com/browse/TC-1880"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1892",
"url": "https://issues.redhat.com/browse/TC-1892"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1928",
"url": "https://issues.redhat.com/browse/TC-1928"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1947",
"url": "https://issues.redhat.com/browse/TC-1947"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1970",
"url": "https://issues.redhat.com/browse/TC-1970"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1868",
"url": "https://issues.redhat.com/browse/TC-1868"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1937",
"url": "https://issues.redhat.com/browse/TC-1937"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1795",
"url": "https://issues.redhat.com/browse/TC-1795"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1824",
"url": "https://issues.redhat.com/browse/TC-1824"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1870",
"url": "https://issues.redhat.com/browse/TC-1870"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2.1/html/release_notes/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2.1/html/release_notes/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-21536",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-21538",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-7254",
"url": "https://access.redhat.com/security/cve/CVE-2024-7254"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_11255.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.1",
"tracking": {
"current_release_date": "2025-09-10T15:43:11+00:00",
"generator": {
"date": "2025-09-10T15:43:11+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.7"
}
},
"id": "RHSA-2024:11255",
"initial_release_date": "2024-12-17T10:22:51+00:00",
"revision_history": [
{
"date": "2024-12-17T10:22:51+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-03-25T10:22:51+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-10T15:43:11+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Profile Analyzer 1.2",
"product": {
"name": "Red Hat Trusted Profile Analyzer 1.2",
"product_id": "Red Hat Trusted Profile Analyzer 1.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_profile_analyzer:1.2::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Profile Analyzer"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64",
"product": {
"name": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64",
"product_id": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhtpa-trustification-service-rhel9@sha256%3A8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe?arch=amd64\u0026repository_url=registry.redhat.io/rhtpa\u0026tag=1.2.1-1733826968"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64 as a component of Red Hat Trusted Profile Analyzer 1.2",
"product_id": "Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
},
"product_reference": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64",
"relates_to_product_reference": "Red Hat Trusted Profile Analyzer 1.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-7254",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-09-19T01:20:29.981665+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2313454"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Protocol Buffers (protobuf). This issue can allows an attacker to cause a StackOverflow via parsing untrusted Protocol Buffers data containing arbitrarily nested SGROUP tags, leading to unbounded recursion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "protobuf: StackOverflow vulnerability in Protocol Buffers",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue represents a significant severity risk because unbounded recursion in Protocol Buffers parsing can be exploited to trigger stack overflows, leading to Denial of Service (DoS). When parsers, such as `DiscardUnknownFieldsParser` or the Java Protobuf Lite parser, encounter arbitrarily nested groups or deeply recursive map fields, the lack of recursion depth limits can result in uncontrolled stack growth. Attackers can craft malicious protobuf messages that deliberately exceed the stack\u0027s capacity, causing the application to crash or become unresponsive.\n\nThe protobuf package as shipped in RHEL does not include the affected java or kotlin bindings, therefore RHEL is Not Affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-7254"
},
{
"category": "external",
"summary": "RHBZ#2313454",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313454"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-7254",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7254"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-7254",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-7254"
},
{
"category": "external",
"summary": "https://github.com/protocolbuffers/protobuf/commit/cc8b3483a5584b3301e3d43d17eb59704857ffaa",
"url": "https://github.com/protocolbuffers/protobuf/commit/cc8b3483a5584b3301e3d43d17eb59704857ffaa"
}
],
"release_date": "2024-09-19T01:15:10.963000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T10:22:51+00:00",
"details": "It is recommended that existing users of RHTPA 1.2.0 upgrade to 1.2.1. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:11255"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "protobuf: StackOverflow vulnerability in Protocol Buffers"
},
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T10:22:51+00:00",
"details": "It is recommended that existing users of RHTPA 1.2.0 upgrade to 1.2.1. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:11255"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-21538",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-11-08T13:44:29.182678+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324550"
}
],
"notes": [
{
"category": "description",
"text": "A Regular Expression Denial of Service (ReDoS) vulnerability was found in the cross-spawn package for Node.js. Due to improper input sanitization, an attacker can increase CPU usage and crash the program with a large, specially crafted string.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cross-spawn: regular expression denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "RHBZ#2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/pull/160",
"url": "https://github.com/moxystudio/node-cross-spawn/pull/160"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230",
"url": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230"
}
],
"release_date": "2024-11-08T05:00:04.695000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T10:22:51+00:00",
"details": "It is recommended that existing users of RHTPA 1.2.0 upgrade to 1.2.1. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:11255"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "cross-spawn: regular expression denial of service"
}
]
}
RHSA-2024:10917
Vulnerability from csaf_redhat
Published
2024-12-10 11:04
Modified
2025-09-10 15:43
Summary
Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.4 release
Notes
Topic
A new version of Red Hat OpenShift distributed tracing platform (Jaeger) has been released
Details
Red Hat OpenShift distributed tracing platform based on Jaeger. Jaeger is a project inspired by Dapper and OpenZipkin. It is a distributed tracing system released as open source by Uber Technologies. It is used for monitoring and troubleshooting microservices-based distributed systems.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A new version of Red Hat OpenShift distributed tracing platform (Jaeger) has been released",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift distributed tracing platform based on Jaeger. Jaeger is a project inspired by Dapper and OpenZipkin. It is a distributed tracing system released as open source by Uber Technologies. It is used for monitoring and troubleshooting microservices-based distributed systems.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10917",
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/distributed_tracing/distributed-tracing-platform-jaeger",
"url": "https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/distributed_tracing/distributed-tracing-platform-jaeger"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-21536",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-43796",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-43799",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-43800",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45296",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45590",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45811",
"url": "https://access.redhat.com/security/cve/CVE-2024-45811"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45812",
"url": "https://access.redhat.com/security/cve/CVE-2024-45812"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-47068",
"url": "https://access.redhat.com/security/cve/CVE-2024-47068"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10917.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.4 release",
"tracking": {
"current_release_date": "2025-09-10T15:43:12+00:00",
"generator": {
"date": "2025-09-10T15:43:12+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.7"
}
},
"id": "RHSA-2024:10917",
"initial_release_date": "2024-12-10T11:04:35+00:00",
"revision_history": [
{
"date": "2024-12-10T11:04:35+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-03-25T11:04:35+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-10T15:43:12+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift distributed tracing 3.4",
"product": {
"name": "Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_distributed_tracing:3.4::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift distributed tracing"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-operator-bundle@sha256%3Ae65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3Afdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Abf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Aaebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Af2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Ab7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Af454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Ac322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Af6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Af5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-45811",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2024-09-17T20:00:49.944925+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312930"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ViteJS. `@fs` denies access to files outside of Vite serving allow list. Adding `?import\u0026raw` to the URL bypasses this limitation and returns the file content if it exists, which can allow an attacker to access arbitrary files via the browser.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vite: server.fs.deny is bypassed when using `?import\u0026raw`",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate rather than high severity because it requires specific conditions for exploitation. The attacker must have access to the Vite server, which typically runs in a local development environment rather than in production. Additionally, the bypass allows file access only if the file path is already known or predictable, limiting the attacker\u0027s ability to arbitrarily explore the file system. While it exposes file content outside the Vite serving allow list, the scope of access is constrained, and the impact can be mitigated by proper server configurations and deployment practices.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45811"
},
{
"category": "external",
"summary": "RHBZ#2312930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312930"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45811",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45811"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite",
"url": "https://github.com/vitejs/vite"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/4573a6fd6f1b097fb7296a3e135e0646b996b249",
"url": "https://github.com/vitejs/vite/commit/4573a6fd6f1b097fb7296a3e135e0646b996b249"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/6820bb3b9a54334f3268fc5ee1e967d2e1c0db34",
"url": "https://github.com/vitejs/vite/commit/6820bb3b9a54334f3268fc5ee1e967d2e1c0db34"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/8339d7408668686bae56eaccbfdc7b87612904bd",
"url": "https://github.com/vitejs/vite/commit/8339d7408668686bae56eaccbfdc7b87612904bd"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/a6da45082b6e73ddfdcdcc06bb5414f976a388d6",
"url": "https://github.com/vitejs/vite/commit/a6da45082b6e73ddfdcdcc06bb5414f976a388d6"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/b901438f99e667f76662840826eec91c8ab3b3e7",
"url": "https://github.com/vitejs/vite/commit/b901438f99e667f76662840826eec91c8ab3b3e7"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx",
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx"
}
],
"release_date": "2024-09-17T18:44:12+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vite: server.fs.deny is bypassed when using `?import\u0026raw`"
},
{
"cve": "CVE-2024-45812",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-17T20:20:07.064245+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312935"
}
],
"notes": [
{
"category": "description",
"text": "A DOM clobbering vulnerability was found in ViteJS. This may lead to cross-site scripting (XSS) attacks on websites that include Vite-bundled files configured with an output format of cjs, iife, or umd, and allow users to inject certain scriptless HTML tags without properly sanitizing the name or id attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vite: XSS via DOM Clobbering gadget found in vite bundled scripts",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is classified as moderate severity rather than important due to the specific conditions required to exploit the vulnerability. While DOM Clobbering can lead to Cross-Site Scripting (XSS), the attack surface is relatively limited. Exploitation is contingent on the presence of unsanitized user-supplied HTML with certain scriptless attributes (`name`, `id`) and the use of particular Vite build outputs (`cjs`, `iife`, `umd`). In environments following proper input sanitization practices, the risk is significantly mitigated. Moreover, the vulnerability does not enable direct code injection or compromise by default but rather leverages existing script elements, reducing the likelihood of widespread exploitation compared to higher severity issues.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45812"
},
{
"category": "external",
"summary": "RHBZ#2312935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312935"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45812",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45812"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45812",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45812"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/ade1d89660e17eedfd35652165b0c26905259fad",
"url": "https://github.com/vitejs/vite/commit/ade1d89660e17eedfd35652165b0c26905259fad"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3",
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-09-17T20:15:06.037000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vite: XSS via DOM Clobbering gadget found in vite bundled scripts"
},
{
"cve": "CVE-2024-47068",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-23T16:20:20.383320+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2314249"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Rollup module bundler for JavaScript. Certain versions are susceptible to a DOM Clobbering vulnerability when bundling scripts with properties from `import.meta` such as `import.meta.url` in the `cjs`/`umd`/`iife` format. The DOM Clobbering gadget can lead to cross-site scripting (XSS) in web pages where scriptless attacker-controlled HTML elements are present, for example, an `img` tag with an unsanitized `name` attribute.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate severity rather than important because it requires a specific and relatively uncommon attack vector to exploit\u2014namely, attacker-controlled scriptless HTML elements, such as an unsanitized name attribute in an img tag, which are typically less prevalent in well-maintained web applications. Additionally, the impact is limited to scenarios where import.meta is improperly handled in specific module formats (`cjs`, `umd`, `iife`), and the vulnerability can only lead to cross-site scripting (XSS) under specific conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-47068"
},
{
"category": "external",
"summary": "RHBZ#2314249",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314249"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-47068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47068"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-47068",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47068"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L157-L162",
"url": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L157-L162"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L180-L185",
"url": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L180-L185"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4",
"url": "https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541",
"url": "https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm",
"url": "https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm"
}
],
"release_date": "2024-09-23T16:15:06.947000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS"
}
]
}
rhsa-2025:8479
Vulnerability from csaf_redhat
Published
2025-06-04 01:58
Modified
2025-09-11 10:58
Summary
Red Hat Security Advisory: RHODF-4.16-RHEL-9 security update
Notes
Topic
Updated images are now available for RHODF-4.16-RHEL-9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift DataFoundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an S3 compatible API.
Security Fix(es):
* express: cause malformed URLs to be evaluated (CVE-2024-29041)
* nodejs-async: Regular expression denial of service while parsing function in autoinject (CVE-2024-39249)
* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)
* npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript (CVE-2024-11831)
* http-proxy-middleware: Denial of Service (CVE-2024-21536)
* golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html (CVE-2024-45338)
* golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing (CVE-2025-30204)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for RHODF-4.16-RHEL-9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift DataFoundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an S3 compatible API.\n\nSecurity Fix(es):\n\n* express: cause malformed URLs to be evaluated (CVE-2024-29041)\n\n* nodejs-async: Regular expression denial of service while parsing function in autoinject (CVE-2024-39249)\n\n* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)\n\n* npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript (CVE-2024-11831)\n\n* http-proxy-middleware: Denial of Service (CVE-2024-21536)\n\n* golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html (CVE-2024-45338)\n\n* golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing (CVE-2025-30204)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:8479",
"url": "https://access.redhat.com/errata/RHSA-2025:8479"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2290901",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290901"
},
{
"category": "external",
"summary": "2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2312579",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312579"
},
{
"category": "external",
"summary": "2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "2333122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333122"
},
{
"category": "external",
"summary": "2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "DFBUGS-1702",
"url": "https://issues.redhat.com/browse/DFBUGS-1702"
},
{
"category": "external",
"summary": "DFBUGS-2603",
"url": "https://issues.redhat.com/browse/DFBUGS-2603"
},
{
"category": "external",
"summary": "DFBUGS-714",
"url": "https://issues.redhat.com/browse/DFBUGS-714"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_8479.json"
}
],
"title": "Red Hat Security Advisory: RHODF-4.16-RHEL-9 security update",
"tracking": {
"current_release_date": "2025-09-11T10:58:34+00:00",
"generator": {
"date": "2025-09-11T10:58:34+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.7"
}
},
"id": "RHSA-2025:8479",
"initial_release_date": "2025-06-04T01:58:44+00:00",
"revision_history": [
{
"date": "2025-06-04T01:58:44+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-06-04T01:58:44+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-11T10:58:34+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHODF 4.16 for RHEL 9",
"product": {
"name": "RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_data_foundation:4.16::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Data Foundation"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"product_id": "odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"product_id": "odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"product_id": "odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"product_id": "odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"product_id": "odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"product_id": "odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.10-5"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"product_id": "odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"product_id": "odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"product_id": "odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"product": {
"name": "odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"product_id": "odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"product_id": "odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"product": {
"name": "odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"product_id": "odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"product_id": "odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"product_id": "odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"product_id": "odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.10-6"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"product_id": "odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"product_id": "odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"product_id": "odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"product_id": "odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"product_id": "odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"product_id": "odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.10-5"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"product_id": "odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"product_id": "odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"product_id": "odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"product": {
"name": "odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"product_id": "odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"product_id": "odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"product": {
"name": "odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"product_id": "odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"product_id": "odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"product_id": "odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"product_id": "odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.10-6"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"product_id": "odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"product_id": "odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"product_id": "odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"product_id": "odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"product_id": "odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"product_id": "odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.10-5"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"product_id": "odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"product_id": "odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"product_id": "odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"product": {
"name": "odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"product_id": "odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"product": {
"name": "odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"product_id": "odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"product_id": "odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"product_id": "odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"product_id": "odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.10-6"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"product_id": "odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"product_id": "odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"product_id": "odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"product_id": "odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"product_id": "odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"product_id": "odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.10-3"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64"
},
"product_reference": "odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le"
},
"product_reference": "odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x"
},
"product_reference": "odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64"
},
"product_reference": "odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x"
},
"product_reference": "odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le"
},
"product_reference": "odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-11831",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-16T16:43:32.021000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312579"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in npm-serialize-javascript. The vulnerability occurs because the serialize-javascript module does not properly sanitize certain inputs, such as regex or other JavaScript object types, allowing an attacker to inject malicious code. This code could be executed when deserialized by a web browser, causing Cross-site scripting (XSS) attacks. This issue is critical in environments where serialized data is sent to web clients, potentially compromising the security of the website or web application using this package.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-11831"
},
{
"category": "external",
"summary": "RHBZ#2312579",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312579"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-11831",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11831"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-11831",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-11831"
},
{
"category": "external",
"summary": "https://github.com/yahoo/serialize-javascript/commit/f27d65d3de42affe2aac14607066c293891cec4e",
"url": "https://github.com/yahoo/serialize-javascript/commit/f27d65d3de42affe2aac14607066c293891cec4e"
},
{
"category": "external",
"summary": "https://github.com/yahoo/serialize-javascript/pull/173",
"url": "https://github.com/yahoo/serialize-javascript/pull/173"
}
],
"release_date": "2024-09-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T01:58:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8479"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript"
},
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T01:58:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8479"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-29041",
"cwe": {
"id": "CWE-601",
"name": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)"
},
"discovery_date": "2024-06-07T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2290901"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Express.js minimalist web framework for node. Upstream versions of Express.js before 4.19.0 and all pre-release alpha and beta versions of 5.0 are affected by an open redirect vulnerability using malformed URLs. When a user of Express performs a redirect using a user-provided URL, Express performs an encode [using `encodeurl`](https://github.com/pillarjs/encodeurl) on the contents before passing it to the `location` header. This issue can cause malformed URLs to be evaluated in unexpected ways by common redirect allow list implementations in Express applications, leading to an Open Redirect via bypass of a properly implemented allow list. The main method impacted is `res.location()`, but this is also called from within `res.redirect()`. The vulnerability is fixed in upstream version 4.19.2 and 5.0.0-beta.3.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: cause malformed URLs to be evaluated",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Fuse 7 only uses express as part of build time development dependency, it is not part of the final product delivery.\n\nUpstream versions should not be relied upon for ultimate determination of affectedness. Red Hat might backport fixes from upstream versions on a case by case basis.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-29041"
},
{
"category": "external",
"summary": "RHBZ#2290901",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290901"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-29041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29041"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-29041",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29041"
},
{
"category": "external",
"summary": "https://expressjs.com/en/4x/api.html#res.location",
"url": "https://expressjs.com/en/4x/api.html#res.location"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/0867302ddbde0e9463d0564fea5861feb708c2dd",
"url": "https://github.com/expressjs/express/commit/0867302ddbde0e9463d0564fea5861feb708c2dd"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/0b746953c4bd8e377123527db11f9cd866e39f94",
"url": "https://github.com/expressjs/express/commit/0b746953c4bd8e377123527db11f9cd866e39f94"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/pull/5539",
"url": "https://github.com/expressjs/express/pull/5539"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-rv95-896h-c2vc",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-rv95-896h-c2vc"
},
{
"category": "external",
"summary": "https://github.com/koajs/koa/issues/1800",
"url": "https://github.com/koajs/koa/issues/1800"
}
],
"release_date": "2024-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T01:58:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8479"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "express: cause malformed URLs to be evaluated"
},
{
"cve": "CVE-2024-39249",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-07-01T20:20:32+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295035"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the async Node.js package. A Regular expression Denial of Service (ReDoS) attack can potentially be triggered via the autoinject function while parsing specially crafted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-async: Regular expression denial of service while parsing function in autoinject",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39249"
},
{
"category": "external",
"summary": "RHBZ#2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39249",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39249"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6"
},
{
"category": "external",
"summary": "https://github.com/zunak/CVE-2024-39249",
"url": "https://github.com/zunak/CVE-2024-39249"
}
],
"release_date": "2024-07-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T01:58:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8479"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-async: Regular expression denial of service while parsing function in autoinject"
},
{
"cve": "CVE-2024-45338",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2024-12-18T21:00:59.938173+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2333122"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/html. This flaw allows an attacker to craft input to the parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This issue can cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as an Important severity because an attacker can craft malicious input that causes the parsing functions to process data non-linearly, resulting in significant delays which leads to a denial of service by exhausting system resources.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45338"
},
{
"category": "external",
"summary": "RHBZ#2333122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333122"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45338"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338"
},
{
"category": "external",
"summary": "https://go.dev/cl/637536",
"url": "https://go.dev/cl/637536"
},
{
"category": "external",
"summary": "https://go.dev/issue/70906",
"url": "https://go.dev/issue/70906"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ",
"url": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3333",
"url": "https://pkg.go.dev/vuln/GO-2024-3333"
}
],
"release_date": "2024-12-18T20:38:22.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T01:58:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8479"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T01:58:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8479"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2025-30204",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2025-03-21T22:00:43.818367+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2354195"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "RHBZ#2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3",
"url": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp",
"url": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3553",
"url": "https://pkg.go.dev/vuln/GO-2025-3553"
}
],
"release_date": "2025-03-21T21:42:01.382000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T01:58:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8479"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have a recommended mitigation at this time.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing"
}
]
}
rhsa-2024_9627
Vulnerability from csaf_redhat
Published
2024-11-14 08:35
Modified
2025-01-06 19:03
Summary
Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.6.3
Notes
Topic
Red Hat OpenShift Service Mesh Containers for 2.6.3
This update has a security impact of Moderate. A Common Vulnerability Scoring
System (CVSS) base score, which gives a detailed severity rating, is available
for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation.
Security Fix(es):
* kiali-ossmc-container: Denial of Service [ossm-2.6] (CVE-2024-21536) (OSSM-8280)
* openshift-istio-kiali-rhel8-container: Denial of Service [ossm-2.6] (CVE-2024-21536) (OSSM-8281)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Service Mesh Containers for 2.6.3\n\nThis update has a security impact of Moderate. A Common Vulnerability Scoring\nSystem (CVSS) base score, which gives a detailed severity rating, is available\nfor each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Service Mesh is Red Hat\u0027s distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation.\n\nSecurity Fix(es):\n\n* kiali-ossmc-container: Denial of Service [ossm-2.6] (CVE-2024-21536) (OSSM-8280)\n\n* openshift-istio-kiali-rhel8-container: Denial of Service [ossm-2.6] (CVE-2024-21536) (OSSM-8281)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:9627",
"url": "https://access.redhat.com/errata/RHSA-2024:9627"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_9627.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.6.3",
"tracking": {
"current_release_date": "2025-01-06T19:03:25+00:00",
"generator": {
"date": "2025-01-06T19:03:25+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2024:9627",
"initial_release_date": "2024-11-14T08:35:32+00:00",
"revision_history": [
{
"date": "2024-11-14T08:35:32+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-11-14T08:35:32+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-06T19:03:25+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHOSSM 2.6 for RHEL 8",
"product": {
"name": "RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:2.6::el8"
}
}
},
{
"category": "product_name",
"name": "RHOSSM 2.6 for RHEL 9",
"product": {
"name": "RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:2.6::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Service Mesh"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.6.3-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.6.3-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.89.7-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.6.3-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.6.3-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.6.3-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64",
"product_id": "openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel9\u0026tag=2.6.3-6"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.6.3-4"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.6.3-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.6.3-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.89.7-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.6.3-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.6.3-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.6.3-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64",
"product_id": "openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel9\u0026tag=2.6.3-6"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.6.3-4"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.6.3-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.6.3-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.89.7-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.6.3-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.6.3-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.6.3-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x",
"product_id": "openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel9\u0026tag=2.6.3-6"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.6.3-4"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.6.3-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.6.3-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.89.7-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.6.3-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.6.3-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.6.3-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le",
"product_id": "openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel9\u0026tag=2.6.3-6"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.6.3-4"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64 as a component of RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64",
"relates_to_product_reference": "9Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le as a component of RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le",
"relates_to_product_reference": "9Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64 as a component of RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64",
"relates_to_product_reference": "9Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x as a component of RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x",
"relates_to_product_reference": "9Base-RHOSSM-2.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-14T08:35:32+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9627"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:1889c37248102e7fbc6914767f962bc25e8f24764d047569b5adb44599201390_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:8c9fc3f17807394af1b664fdab1064b65e4423c86263589b3a19d417947d00c9_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:c6682b3cd97d7d6d0f6ca841f7fec8bacb3bd93edd963278abe282bba762ec3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:d8ebecdbde50b3a582c6e71a6badaca02c54e827fe48537ac9c690ead424bb04_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:0372efd25c6c7f723716845d733fd7c45bda5aad5b2d3e7f9037aa11a663f959_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:28ace192ebbac74213f0f43290a8bc210c8229d531b136a4331f7c7631560efc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:59072d66381da02a05d4cddbf3f73e7c96ada225c6dd202ca4ad0f8f866bdc29_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:be9f110bc9eb80cee9d9377a24069262dfd5595265b1d9cd8043c3a01e483d67_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:2891713b69c41aba55dcd30fc09943c2bb9a3a4914ea17dc951d18152e4e9892_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:6a3b4998378d38293d182fddf365da23f6217652eac83e5f01a14fa276b246a5_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:b6bd43e43c736cf131606c1e886accfd80b449c470cbbf462185f7b5cf8d0640_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:d4e4fe6cfb422f7cabc20c856b304f34ae00cbcdb16bd64b71c6bcfd2f0b1136_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:33a30bfeb06ae9dbac23d19244c2467c1172419694694c6af7c9503f4be17a7f_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bac85b4bb1235e0116f8039ff04792581958af49de4063a05caa53315fcdf2a0_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bbd7d74fa80549b760e979be903db5511205b60d1c34e15b4cec85fb03883ff8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:be82d8435d651e788e3a2d261fa9a6470116bd0e0ab4a903ac19e410b0e6e571_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:30c7d6d2911101f268aff934b44088da64b714b14fb840fe085687b590337ee4_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:4c11fb6461953aecdd842bf5725cece9e9452b888faf8cbaccd4c323c5125319_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:a6d3a8a335949f1b7190e2a894c42e57fbc61850e104f7a1dd6e1c02f94d0c06_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:c54e5b8b593ba7a9f1a1230350212985494d3510e92fa0edf156f84ceec4c83e_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:08020bfd523e7416fe924996ef68cb4d1d3acb8bdfddc15c73076a8b40e535b7_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:ac3fea59a801e20040e69f82a4f0be3eb04b0b82fa0af53222a6b6554def17ff_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:cd726f120f5e8c11cff71db116f249bb6563afdae114e63a006521c5bc543b6c_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:dcadfeeac77f2c41d76a37ba5aaac0d3391c8eaabcd95102b0e0fa3eef20de85_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:027db8bef3bf61c4f5fc5ffea655fbf3cac217c59f980846553ac36f49280ee3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:21c3ffa684ce7241faef6f0c2a096dc70344d5b1823238ece95d5a3637147750_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:3e37eaeaecb34299216b4995ef16de97bf97eacdc1de328b23a92da4415ef78c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:5c17f1ad457b50b234e4cea2df0604a903de08d8fd407ed662b5792ea97e83ec_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1271c93e9048ab945ef6337663a9600f3a5f355be3374c4193b8e97ee6ab245_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:c1fd9098be27632d6f46b3f1f9c31fc700dd5deb9bff5594e1ec046c3e45173d_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:e11bf93a790ab0426eff38347f0cefd75bdda6def12dddd48284835656ef7fc6_arm64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:f55b5bd57978cf3ce9023abec88988c31d59610eac4e4e2232e6cde8744bfce2_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
}
]
}
rhsa-2024:11256
Vulnerability from csaf_redhat
Published
2024-12-17 11:08
Modified
2025-09-10 15:43
Summary
Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.1
Notes
Topic
Red Hat Trusted Profile Analyzer 1.2.1 release Red Hat Product Security has rated this update as having a security impact of Moderate
Details
Red Hat Trusted Profile Analyzer 1.2.1
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Trusted Profile Analyzer 1.2.1 release Red Hat Product Security has rated this update as having a security impact of Moderate",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Trusted Profile Analyzer 1.2.1",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:11256",
"url": "https://access.redhat.com/errata/RHSA-2024:11256"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1865",
"url": "https://issues.redhat.com/browse/TC-1865"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1873",
"url": "https://issues.redhat.com/browse/TC-1873"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1880",
"url": "https://issues.redhat.com/browse/TC-1880"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1892",
"url": "https://issues.redhat.com/browse/TC-1892"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1928",
"url": "https://issues.redhat.com/browse/TC-1928"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1947",
"url": "https://issues.redhat.com/browse/TC-1947"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1970",
"url": "https://issues.redhat.com/browse/TC-1970"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1868",
"url": "https://issues.redhat.com/browse/TC-1868"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1937",
"url": "https://issues.redhat.com/browse/TC-1937"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1795",
"url": "https://issues.redhat.com/browse/TC-1795"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1824",
"url": "https://issues.redhat.com/browse/TC-1824"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1870",
"url": "https://issues.redhat.com/browse/TC-1870"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2.1/html/release_notes/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2.1/html/release_notes/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-21536",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-21538",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-7254",
"url": "https://access.redhat.com/security/cve/CVE-2024-7254"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_11256.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.1",
"tracking": {
"current_release_date": "2025-09-10T15:43:09+00:00",
"generator": {
"date": "2025-09-10T15:43:09+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.7"
}
},
"id": "RHSA-2024:11256",
"initial_release_date": "2024-12-17T11:08:00+00:00",
"revision_history": [
{
"date": "2024-12-17T11:08:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-03-25T11:08:00+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-10T15:43:09+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Profile Analyzer 1.2",
"product": {
"name": "Red Hat Trusted Profile Analyzer 1.2",
"product_id": "Red Hat Trusted Profile Analyzer 1.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_profile_analyzer:1.2::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Profile Analyzer"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64",
"product": {
"name": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64",
"product_id": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhtpa-guac-rhel9@sha256%3A9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30?arch=amd64\u0026repository_url=registry.redhat.io/rhtpa\u0026tag=1.2.1-1733575106"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64 as a component of Red Hat Trusted Profile Analyzer 1.2",
"product_id": "Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
},
"product_reference": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64",
"relates_to_product_reference": "Red Hat Trusted Profile Analyzer 1.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-7254",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-09-19T01:20:29.981665+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2313454"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Protocol Buffers (protobuf). This issue can allows an attacker to cause a StackOverflow via parsing untrusted Protocol Buffers data containing arbitrarily nested SGROUP tags, leading to unbounded recursion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "protobuf: StackOverflow vulnerability in Protocol Buffers",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue represents a significant severity risk because unbounded recursion in Protocol Buffers parsing can be exploited to trigger stack overflows, leading to Denial of Service (DoS). When parsers, such as `DiscardUnknownFieldsParser` or the Java Protobuf Lite parser, encounter arbitrarily nested groups or deeply recursive map fields, the lack of recursion depth limits can result in uncontrolled stack growth. Attackers can craft malicious protobuf messages that deliberately exceed the stack\u0027s capacity, causing the application to crash or become unresponsive.\n\nThe protobuf package as shipped in RHEL does not include the affected java or kotlin bindings, therefore RHEL is Not Affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-7254"
},
{
"category": "external",
"summary": "RHBZ#2313454",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313454"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-7254",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7254"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-7254",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-7254"
},
{
"category": "external",
"summary": "https://github.com/protocolbuffers/protobuf/commit/cc8b3483a5584b3301e3d43d17eb59704857ffaa",
"url": "https://github.com/protocolbuffers/protobuf/commit/cc8b3483a5584b3301e3d43d17eb59704857ffaa"
}
],
"release_date": "2024-09-19T01:15:10.963000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T11:08:00+00:00",
"details": "It is recommended that existing users of RHTPA 1.2.0 upgrade to 1.2.1. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:11256"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "protobuf: StackOverflow vulnerability in Protocol Buffers"
},
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T11:08:00+00:00",
"details": "It is recommended that existing users of RHTPA 1.2.0 upgrade to 1.2.1. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:11256"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-21538",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-11-08T13:44:29.182678+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324550"
}
],
"notes": [
{
"category": "description",
"text": "A Regular Expression Denial of Service (ReDoS) vulnerability was found in the cross-spawn package for Node.js. Due to improper input sanitization, an attacker can increase CPU usage and crash the program with a large, specially crafted string.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cross-spawn: regular expression denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "RHBZ#2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/pull/160",
"url": "https://github.com/moxystudio/node-cross-spawn/pull/160"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230",
"url": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230"
}
],
"release_date": "2024-11-08T05:00:04.695000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T11:08:00+00:00",
"details": "It is recommended that existing users of RHTPA 1.2.0 upgrade to 1.2.1. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:11256"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "cross-spawn: regular expression denial of service"
}
]
}
rhsa-2025:3928
Vulnerability from csaf_redhat
Published
2025-04-15 19:46
Modified
2025-09-10 15:38
Summary
Red Hat Security Advisory: ACS 4.5 enhancement and security update
Notes
Topic
Updated images are now available for Red Hat Advanced Cluster Security (RHACS).
Details
This release of RHACS includes the following bug fix:
* Fixed a bug to match the aggregation field of the compliance tables to the widgets for consistency.
This release also addresses the following security vulnerabilities:
* RHSA-2025:2679: libxml2 security update
* RHSA-2025:1350: libxml2 security update
* RHSA-2025:1330: openssl security update
* CVE-2024-57083: Prototype pollution in redoc can allow a DoS attack
* CVE-2024-21536: Flaw in `http-proxy-middleware` package
* CVE-2025-30204: Flaw in the golang-jwt implementation of JSON Web Tokens (JWT)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security (RHACS).",
"title": "Topic"
},
{
"category": "general",
"text": "This release of RHACS includes the following bug fix:\n\n* Fixed a bug to match the aggregation field of the compliance tables to the widgets for consistency.\n\nThis release also addresses the following security vulnerabilities:\n\n* RHSA-2025:2679: libxml2 security update\n\n* RHSA-2025:1350: libxml2 security update\n\n* RHSA-2025:1330: openssl security update\n\n* CVE-2024-57083: Prototype pollution in redoc can allow a DoS attack\n\n* CVE-2024-21536: Flaw in `http-proxy-middleware` package\n\n* CVE-2025-30204: Flaw in the golang-jwt implementation of JSON Web Tokens (JWT)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:3928",
"url": "https://access.redhat.com/errata/RHSA-2025:3928"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.5/html/release_notes/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.5/html/release_notes/index"
},
{
"category": "external",
"summary": "2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "2355865",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2355865"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_3928.json"
}
],
"title": "Red Hat Security Advisory: ACS 4.5 enhancement and security update",
"tracking": {
"current_release_date": "2025-09-10T15:38:04+00:00",
"generator": {
"date": "2025-09-10T15:38:04+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.7"
}
},
"id": "RHSA-2025:3928",
"initial_release_date": "2025-04-15T19:46:07+00:00",
"revision_history": [
{
"date": "2025-04-15T19:46:07+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-04-15T19:46:07+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-10T15:38:04+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHACS 4.5 for RHEL 8",
"product": {
"name": "RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.5::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.5.9-1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.5.9-1"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.5.9-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.5.9-1"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-15T19:46:07+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to patch release 4.5.9.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3928"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-57083",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2025-03-28T21:01:02.993057+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2355865"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in redoc. This vulnerability can allow an attacker to cause a Denial of Service (DoS) via supplying a crafted payload.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "redoc: Prototype Pollution in redoc",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as an Important severity because it allows attackers to exploit a prototype pollution issue in the Module.mergeObjects method by crafting a malicious payload. An attacker can alter the built-in Object.prototype, causing a Denial of Service (DoS) condition, leading to system instability, impacting the availability of the affected system.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-57083"
},
{
"category": "external",
"summary": "RHBZ#2355865",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2355865"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-57083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57083"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-57083",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-57083"
},
{
"category": "external",
"summary": "https://github.com/Redocly/redoc/issues/2499",
"url": "https://github.com/Redocly/redoc/issues/2499"
}
],
"release_date": "2025-03-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-15T19:46:07+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to patch release 4.5.9.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3928"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "redoc: Prototype Pollution in redoc"
},
{
"cve": "CVE-2025-30204",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2025-03-21T22:00:43.818367+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2354195"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "RHBZ#2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3",
"url": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp",
"url": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3553",
"url": "https://pkg.go.dev/vuln/GO-2025-3553"
}
],
"release_date": "2025-03-21T21:42:01.382000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-15T19:46:07+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to patch release 4.5.9.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:3928"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have a recommended mitigation at this time.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:5a73bcbab19ab68ff948838b21b5cb11e2134a48350b8cbf82ef288817c75719_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:69eb82f50c3790b90b9a8015bf078da8066b38fee26cbb3a2623753a51ca99ea_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dda4781392cd2bb6e599f51b35b390e7d60d71166a968c358c999a570cbc829b_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:645219f425559e75234be2a6320fc0fa176db81d7e3738b2e3f2ccdc92ce6e24_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:cf7fa69d0b423aad50bc871808e34d7e8783aefcea05ead2dcd857dc11349510_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:e938cb5948023fef76efabbfbf3c8f1bbaf6d62fe38b7e31c8bb84fcef7fb4f2_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:2cc4e9960b80728892eafc1d3ce0dfbb9bbd28929261fc59fd71982fcbb864cc_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e03cb6ab11ee042ec66ec4a5b214f1ce509cdfa0f92b93d0cd7f87893504fd0a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e98696ead4e75cd57655325eb3874ae1fe0bee30c52f1517d13cb9b046c8bf5f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:05ce852ee7c7a221b50e39224953bfef704ab5959ff7f33d5f30f9dbeff55ae3_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:566fffe3028705b2428e9420ca770819dae1729ea9c36213a2fcf5cd68796f73_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:990f13b1986b3f5ddc6bb44e30ce6dc40ad6108e927badb3c9f7e0b49fba675c_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:41351e88688d23a443ad4f141caf0433b2c2789e6a1a85b4f5b36abeb5656bb1_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:4bf810ed79118b56bbc97caf0d04b65a57a69d8f1333af6bb07cfdb33454b2a8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:d0c15d6cbb78bfd7529030c62ccf4737ec235dbe143a76e898b6afbfd90ca918_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:9fed7cffad49c7ed79405948b12256cd12e4dce00ef2737ade5db5018b324916_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c2f9ef5d94e03753926d41c3e90d429b660a59013ab269b71bfe1b21575ab93f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:c6481192d23a50a5c75ca10fcbafde1eec8614a0a71635b8615ea70020d07749_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4df217585e8de0ca3fd0722454f65c882ff1a49ed03d839a2b48c8adeb110776_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:ae67f0a80b58fff1eb900fa9adb1e0fe2a5d1f2c531caffcdea3eff2c0f8189c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b9c20a2ddb97eb45995836e5be0713419afc2d9f8e2374d7ca64f7ea5274ad2f_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:247b450a36800470e484320eef0c4bf07f0aaee66ddfb0b38ed7a215dea8b489_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:750f9b25880952184289ae3389fd679a3ab6bb321c7531d8bb9c51a4df3143fb_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f45b818df4a3bbb45caa2086f4f0b29f8e79abfe579fd04235a65db122529505_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c421d3700f197dbb69ba3b34b204415413222d677bc58bb126bf064d9957893b_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c910f6a958bbe1176da3defa138c8a7c9c2728c50c4ec52827c008c3d6293047_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:ff99cf87213c08c560f2a27d83e51b7571637cef33e0c6ab5177a7c678df9bbb_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:0f1b879c9de1fcc55b017a3f465d8f44f86668683174e936a5cf10dabe292b16_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:8ef4868576b184b65076bfdb285a0dfe9fab9400795232cd78a3e9676410fba0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:922979b45991631a3c8f17a8046270f9d50da23935699b6f70fb8fb41cbc7539_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:08522cc11c22617e947a7eeb24ad80ca98df1a54affc499307ae992dbbffb1af_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:dc4afae274b026d43099cbc3eff7144cea981931a441fc0ada1bdc99bd0b1370_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f45ce53f6007cfd5bd002eebe6ead15f39ade85deaecc5406fc07222781ca3f8_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:00a43ea5b5d02e811ae1a78adaf8cda9b87b0819b69ba209487d47eab677b424_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:74fb88b37ed6763861ca3730d7b5a62f793831de803ab250ec68d86363ceff49_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:efc4a42a309f27543f650b13fde90a26500ea69d0d5cbaf3ac7daebff3b0330f_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:72490c948f3a6fd2d75ea01d434dd76f53adb73f6655537081d95542c541662d_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ec17a50dd2c436301ff369852cfa02d7b493c72d490ff1c58fd508231c76626b_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f4f13c49060230038d0017452c15c4bf5d15520659ae72b9b022142a8bae0ba7_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing"
}
]
}
RHSA-2024:10962
Vulnerability from csaf_redhat
Published
2024-12-11 16:47
Modified
2025-09-10 15:43
Summary
Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.4 release
Notes
Topic
A new version of Red Hat OpenShift distributed tracing platform (Jaeger) has been released
Details
Red Hat OpenShift distributed tracing platform based on Jaeger. Jaeger is a project inspired by Dapper and OpenZipkin. It is a distributed tracing system released as open source by Uber Technologies. It is used for monitoring and troubleshooting microservices-based distributed systems.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A new version of Red Hat OpenShift distributed tracing platform (Jaeger) has been released",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift distributed tracing platform based on Jaeger. Jaeger is a project inspired by Dapper and OpenZipkin. It is a distributed tracing system released as open source by Uber Technologies. It is used for monitoring and troubleshooting microservices-based distributed systems.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10962",
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/distributed_tracing/distributed-tracing-platform-jaeger",
"url": "https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/distributed_tracing/distributed-tracing-platform-jaeger"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-21536",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-43796",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-43799",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-43800",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45296",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45590",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45811",
"url": "https://access.redhat.com/security/cve/CVE-2024-45811"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45812",
"url": "https://access.redhat.com/security/cve/CVE-2024-45812"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-47068",
"url": "https://access.redhat.com/security/cve/CVE-2024-47068"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10962.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.4 release",
"tracking": {
"current_release_date": "2025-09-10T15:43:09+00:00",
"generator": {
"date": "2025-09-10T15:43:09+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.7"
}
},
"id": "RHSA-2024:10962",
"initial_release_date": "2024-12-11T16:47:10+00:00",
"revision_history": [
{
"date": "2024-12-11T16:47:10+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-03-25T16:47:10+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-10T15:43:09+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift distributed tracing 3.4",
"product": {
"name": "Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_distributed_tracing:3.4::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift distributed tracing"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Aeebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-operator-bundle@sha256%3A44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3Abf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Afd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Ac254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Ada3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3Aa7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Ab7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Afed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Ae8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Aceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3Ac81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Ae537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Abb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3Ae7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3Ab541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3Ab0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3A44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Ab9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3Afe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-45811",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2024-09-17T20:00:49.944925+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312930"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ViteJS. `@fs` denies access to files outside of Vite serving allow list. Adding `?import\u0026raw` to the URL bypasses this limitation and returns the file content if it exists, which can allow an attacker to access arbitrary files via the browser.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vite: server.fs.deny is bypassed when using `?import\u0026raw`",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate rather than high severity because it requires specific conditions for exploitation. The attacker must have access to the Vite server, which typically runs in a local development environment rather than in production. Additionally, the bypass allows file access only if the file path is already known or predictable, limiting the attacker\u0027s ability to arbitrarily explore the file system. While it exposes file content outside the Vite serving allow list, the scope of access is constrained, and the impact can be mitigated by proper server configurations and deployment practices.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45811"
},
{
"category": "external",
"summary": "RHBZ#2312930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312930"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45811",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45811"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite",
"url": "https://github.com/vitejs/vite"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/4573a6fd6f1b097fb7296a3e135e0646b996b249",
"url": "https://github.com/vitejs/vite/commit/4573a6fd6f1b097fb7296a3e135e0646b996b249"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/6820bb3b9a54334f3268fc5ee1e967d2e1c0db34",
"url": "https://github.com/vitejs/vite/commit/6820bb3b9a54334f3268fc5ee1e967d2e1c0db34"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/8339d7408668686bae56eaccbfdc7b87612904bd",
"url": "https://github.com/vitejs/vite/commit/8339d7408668686bae56eaccbfdc7b87612904bd"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/a6da45082b6e73ddfdcdcc06bb5414f976a388d6",
"url": "https://github.com/vitejs/vite/commit/a6da45082b6e73ddfdcdcc06bb5414f976a388d6"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/b901438f99e667f76662840826eec91c8ab3b3e7",
"url": "https://github.com/vitejs/vite/commit/b901438f99e667f76662840826eec91c8ab3b3e7"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx",
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx"
}
],
"release_date": "2024-09-17T18:44:12+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vite: server.fs.deny is bypassed when using `?import\u0026raw`"
},
{
"cve": "CVE-2024-45812",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-17T20:20:07.064245+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312935"
}
],
"notes": [
{
"category": "description",
"text": "A DOM clobbering vulnerability was found in ViteJS. This may lead to cross-site scripting (XSS) attacks on websites that include Vite-bundled files configured with an output format of cjs, iife, or umd, and allow users to inject certain scriptless HTML tags without properly sanitizing the name or id attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vite: XSS via DOM Clobbering gadget found in vite bundled scripts",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is classified as moderate severity rather than important due to the specific conditions required to exploit the vulnerability. While DOM Clobbering can lead to Cross-Site Scripting (XSS), the attack surface is relatively limited. Exploitation is contingent on the presence of unsanitized user-supplied HTML with certain scriptless attributes (`name`, `id`) and the use of particular Vite build outputs (`cjs`, `iife`, `umd`). In environments following proper input sanitization practices, the risk is significantly mitigated. Moreover, the vulnerability does not enable direct code injection or compromise by default but rather leverages existing script elements, reducing the likelihood of widespread exploitation compared to higher severity issues.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45812"
},
{
"category": "external",
"summary": "RHBZ#2312935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312935"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45812",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45812"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45812",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45812"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/ade1d89660e17eedfd35652165b0c26905259fad",
"url": "https://github.com/vitejs/vite/commit/ade1d89660e17eedfd35652165b0c26905259fad"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3",
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-09-17T20:15:06.037000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vite: XSS via DOM Clobbering gadget found in vite bundled scripts"
},
{
"cve": "CVE-2024-47068",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-23T16:20:20.383320+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2314249"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Rollup module bundler for JavaScript. Certain versions are susceptible to a DOM Clobbering vulnerability when bundling scripts with properties from `import.meta` such as `import.meta.url` in the `cjs`/`umd`/`iife` format. The DOM Clobbering gadget can lead to cross-site scripting (XSS) in web pages where scriptless attacker-controlled HTML elements are present, for example, an `img` tag with an unsanitized `name` attribute.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate severity rather than important because it requires a specific and relatively uncommon attack vector to exploit\u2014namely, attacker-controlled scriptless HTML elements, such as an unsanitized name attribute in an img tag, which are typically less prevalent in well-maintained web applications. Additionally, the impact is limited to scenarios where import.meta is improperly handled in specific module formats (`cjs`, `umd`, `iife`), and the vulnerability can only lead to cross-site scripting (XSS) under specific conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-47068"
},
{
"category": "external",
"summary": "RHBZ#2314249",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314249"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-47068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47068"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-47068",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47068"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L157-L162",
"url": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L157-L162"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L180-L185",
"url": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L180-L185"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4",
"url": "https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541",
"url": "https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm",
"url": "https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm"
}
],
"release_date": "2024-09-23T16:15:06.947000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS"
}
]
}
rhsa-2025:8551
Vulnerability from csaf_redhat
Published
2025-06-04 22:58
Modified
2025-09-11 10:58
Summary
Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.14.18 Bug Fix Update
Notes
Topic
Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.14.18 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.
Details
Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an S3 compatible API.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.14.18 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an S3 compatible API.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:8551",
"url": "https://access.redhat.com/errata/RHSA-2025:8551"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2270863",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270863"
},
{
"category": "external",
"summary": "2290901",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290901"
},
{
"category": "external",
"summary": "2292777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292777"
},
{
"category": "external",
"summary": "2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2312579",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312579"
},
{
"category": "external",
"summary": "2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "2333122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333122"
},
{
"category": "external",
"summary": "DFBUGS-2605",
"url": "https://issues.redhat.com/browse/DFBUGS-2605"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_8551.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.14.18 Bug Fix Update",
"tracking": {
"current_release_date": "2025-09-11T10:58:35+00:00",
"generator": {
"date": "2025-09-11T10:58:35+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.7"
}
},
"id": "RHSA-2025:8551",
"initial_release_date": "2025-06-04T22:58:41+00:00",
"revision_history": [
{
"date": "2025-06-04T22:58:41+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-06-04T22:58:41+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-11T10:58:35+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHODF 4.14 for RHEL 9",
"product": {
"name": "RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_data_foundation:4.14::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Data Foundation"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"product_id": "odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"product": {
"name": "odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"product_id": "odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-cli-rhel9\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"product_id": "odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.14.18-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"product_id": "odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"product_id": "odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"product_id": "odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.14.18-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"product_id": "odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"product_id": "odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"product_id": "odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"product": {
"name": "odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"product_id": "odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.14.18-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"product_id": "odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.14.18-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"product": {
"name": "odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"product_id": "odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"product_id": "odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"product_id": "odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"product_id": "odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.14.18-4"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"product_id": "odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"product": {
"name": "odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"product_id": "odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-cli-rhel9\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"product_id": "odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.14.18-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"product_id": "odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"product_id": "odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"product_id": "odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.14.18-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"product_id": "odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"product_id": "odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"product_id": "odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"product": {
"name": "odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"product_id": "odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.14.18-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"product_id": "odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.14.18-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"product": {
"name": "odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"product_id": "odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"product_id": "odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"product_id": "odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"product_id": "odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.14.18-4"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"product_id": "odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"product": {
"name": "odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"product_id": "odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-cli-rhel9\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"product_id": "odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.14.18-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"product_id": "odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"product_id": "odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"product_id": "odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.14.18-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"product_id": "odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"product_id": "odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"product_id": "odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"product": {
"name": "odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"product_id": "odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.14.18-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.14.18-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"product": {
"name": "odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"product_id": "odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"product_id": "odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"product_id": "odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"product_id": "odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.14.18-4"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"product": {
"name": "odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"product_id": "odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-cli-rhel9\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"product_id": "odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.14.18-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"product_id": "odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"product_id": "odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.14.18-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"product_id": "odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"product_id": "odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.14.18-3"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le"
},
"product_reference": "odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x"
},
"product_reference": "odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64"
},
"product_reference": "odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64"
},
"product_reference": "odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x"
},
"product_reference": "odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64"
},
"product_reference": "odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le"
},
"product_reference": "odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x"
},
"product_reference": "odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64"
},
"product_reference": "odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le"
},
"product_reference": "odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-11831",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-16T16:43:32.021000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312579"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in npm-serialize-javascript. The vulnerability occurs because the serialize-javascript module does not properly sanitize certain inputs, such as regex or other JavaScript object types, allowing an attacker to inject malicious code. This code could be executed when deserialized by a web browser, causing Cross-site scripting (XSS) attacks. This issue is critical in environments where serialized data is sent to web clients, potentially compromising the security of the website or web application using this package.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-11831"
},
{
"category": "external",
"summary": "RHBZ#2312579",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312579"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-11831",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11831"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-11831",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-11831"
},
{
"category": "external",
"summary": "https://github.com/yahoo/serialize-javascript/commit/f27d65d3de42affe2aac14607066c293891cec4e",
"url": "https://github.com/yahoo/serialize-javascript/commit/f27d65d3de42affe2aac14607066c293891cec4e"
},
{
"category": "external",
"summary": "https://github.com/yahoo/serialize-javascript/pull/173",
"url": "https://github.com/yahoo/serialize-javascript/pull/173"
}
],
"release_date": "2024-09-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T22:58:41+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8551"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript"
},
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T22:58:41+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8551"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-21538",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-11-08T13:44:29.182678+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324550"
}
],
"notes": [
{
"category": "description",
"text": "A Regular Expression Denial of Service (ReDoS) vulnerability was found in the cross-spawn package for Node.js. Due to improper input sanitization, an attacker can increase CPU usage and crash the program with a large, specially crafted string.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cross-spawn: regular expression denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "RHBZ#2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/pull/160",
"url": "https://github.com/moxystudio/node-cross-spawn/pull/160"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230",
"url": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230"
}
],
"release_date": "2024-11-08T05:00:04.695000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T22:58:41+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8551"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "cross-spawn: regular expression denial of service"
},
{
"cve": "CVE-2024-29041",
"cwe": {
"id": "CWE-601",
"name": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)"
},
"discovery_date": "2024-06-07T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2290901"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Express.js minimalist web framework for node. Upstream versions of Express.js before 4.19.0 and all pre-release alpha and beta versions of 5.0 are affected by an open redirect vulnerability using malformed URLs. When a user of Express performs a redirect using a user-provided URL, Express performs an encode [using `encodeurl`](https://github.com/pillarjs/encodeurl) on the contents before passing it to the `location` header. This issue can cause malformed URLs to be evaluated in unexpected ways by common redirect allow list implementations in Express applications, leading to an Open Redirect via bypass of a properly implemented allow list. The main method impacted is `res.location()`, but this is also called from within `res.redirect()`. The vulnerability is fixed in upstream version 4.19.2 and 5.0.0-beta.3.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: cause malformed URLs to be evaluated",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Fuse 7 only uses express as part of build time development dependency, it is not part of the final product delivery.\n\nUpstream versions should not be relied upon for ultimate determination of affectedness. Red Hat might backport fixes from upstream versions on a case by case basis.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-29041"
},
{
"category": "external",
"summary": "RHBZ#2290901",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290901"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-29041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29041"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-29041",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29041"
},
{
"category": "external",
"summary": "https://expressjs.com/en/4x/api.html#res.location",
"url": "https://expressjs.com/en/4x/api.html#res.location"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/0867302ddbde0e9463d0564fea5861feb708c2dd",
"url": "https://github.com/expressjs/express/commit/0867302ddbde0e9463d0564fea5861feb708c2dd"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/0b746953c4bd8e377123527db11f9cd866e39f94",
"url": "https://github.com/expressjs/express/commit/0b746953c4bd8e377123527db11f9cd866e39f94"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/pull/5539",
"url": "https://github.com/expressjs/express/pull/5539"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-rv95-896h-c2vc",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-rv95-896h-c2vc"
},
{
"category": "external",
"summary": "https://github.com/koajs/koa/issues/1800",
"url": "https://github.com/koajs/koa/issues/1800"
}
],
"release_date": "2024-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T22:58:41+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8551"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "express: cause malformed URLs to be evaluated"
},
{
"cve": "CVE-2024-29180",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2024-03-21T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2270863"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the webpack-dev-middleware package, where it failed to validate the supplied URL address sufficiently before returning local files. This flaw allows an attacker to craft URLs to return arbitrary local files from the developer\u0027s machine. The lack of normalization before calling the middleware also allows the attacker to perform path traversal attacks on the target environment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack-dev-middleware: lack of URL validation may lead to file leak",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability in webpack-dev represents a important security issue due to its potential to expose sensitive files and compromise developer machines. By failing to validate URLs and normalize paths effectively, the middleware allows attackers to craft malicious requests that can retrieve arbitrary local files or perform unauthorized path traversal. This could lead to unauthorized access to confidential information, including source code, configuration files, and even system-level files. Given the widespread use of webpack-dev-middleware in web development environments, addressing this vulnerability promptly is important to prevent serious data breaches and protect the integrity of development processes.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le"
],
"known_not_affected": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-29180"
},
{
"category": "external",
"summary": "RHBZ#2270863",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270863"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-29180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29180"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-29180",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29180"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack-dev-middleware/security/advisories/GHSA-wr3j-pwj9-hqq6",
"url": "https://github.com/webpack/webpack-dev-middleware/security/advisories/GHSA-wr3j-pwj9-hqq6"
}
],
"release_date": "2024-03-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T22:58:41+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8551"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "webpack-dev-middleware: lack of URL validation may lead to file leak"
},
{
"cve": "CVE-2024-37890",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292777"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Node.js WebSocket library (ws). A request with several headers exceeding the \u0027server.maxHeadersCount\u0027 threshold could be used to crash a ws server, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-ws: denial of service when handling a request with many HTTP headers",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le"
],
"known_not_affected": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-37890"
},
{
"category": "external",
"summary": "RHBZ#2292777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292777"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37890"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-37890",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37890"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/security/advisories/GHSA-3h5v-q93c-6h6q",
"url": "https://github.com/websockets/ws/security/advisories/GHSA-3h5v-q93c-6h6q"
}
],
"release_date": "2024-06-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T22:58:41+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8551"
},
{
"category": "workaround",
"details": "The issue can be mitigated by reducing the maximum allowed length of the request headers using the --max-http-header-size=size or the maxHeaderSize options so that no more headers than the server.maxHeadersCount limit can be sent. The issue can be mitigated also by seting server.maxHeadersCount to 0.",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-ws: denial of service when handling a request with many HTTP headers"
},
{
"cve": "CVE-2024-39249",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-07-01T20:20:32+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295035"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the async Node.js package. A Regular expression Denial of Service (ReDoS) attack can potentially be triggered via the autoinject function while parsing specially crafted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-async: Regular expression denial of service while parsing function in autoinject",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le"
],
"known_not_affected": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39249"
},
{
"category": "external",
"summary": "RHBZ#2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39249",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39249"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6"
},
{
"category": "external",
"summary": "https://github.com/zunak/CVE-2024-39249",
"url": "https://github.com/zunak/CVE-2024-39249"
}
],
"release_date": "2024-07-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T22:58:41+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8551"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-async: Regular expression denial of service while parsing function in autoinject"
},
{
"cve": "CVE-2024-45338",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2024-12-18T21:00:59.938173+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2333122"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/html. This flaw allows an attacker to craft input to the parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This issue can cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as an Important severity because an attacker can craft malicious input that causes the parsing functions to process data non-linearly, resulting in significant delays which leads to a denial of service by exhausting system resources.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64"
],
"known_not_affected": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45338"
},
{
"category": "external",
"summary": "RHBZ#2333122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333122"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45338"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338"
},
{
"category": "external",
"summary": "https://go.dev/cl/637536",
"url": "https://go.dev/cl/637536"
},
{
"category": "external",
"summary": "https://go.dev/issue/70906",
"url": "https://go.dev/issue/70906"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ",
"url": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3333",
"url": "https://pkg.go.dev/vuln/GO-2024-3333"
}
],
"release_date": "2024-12-18T20:38:22.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T22:58:41+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8551"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T22:58:41+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8551"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-48910",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2024-10-31T15:00:53.609372+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2322949"
}
],
"notes": [
{
"category": "description",
"text": "A prototype pollution vulnerability was found in DOMPurify. This flaw allows a remote attacker to add or modify attributes of an object prototype. This issue can lead to the injection of malicious attributes used in other components or cause a crash by overriding existing attributes with ones of incompatible type.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dompurify: DOMPurify vulnerable to tampering by prototype pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The prototype pollution vulnerability in DOMPurify is considered a high-severity issue because it allows attackers to modify the prototype of built-in JavaScript objects, potentially impacting the entire application. This could lead to security risks, such as overwriting methods on fundamental objects like `Object`, `Array`, or `Function`, allowing attackers to manipulate application behavior, bypass security controls, or cause application crashes. Given that DOMPurify is a core library for sanitizing user input, an attacker exploiting this vulnerability could gain control over how sanitized content is processed, leading to the execution of malicious scripts or triggering other unintended behaviors across the application.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-48910"
},
{
"category": "external",
"summary": "RHBZ#2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-48910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48910"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc",
"url": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr",
"url": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr"
}
],
"release_date": "2024-10-31T14:22:52.867000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T22:58:41+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8551"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dompurify: DOMPurify vulnerable to tampering by prototype pollution"
}
]
}
rhba-2024:11265
Vulnerability from csaf_redhat
Published
2024-12-17 15:12
Modified
2025-09-10 15:43
Summary
Red Hat Bug Fix Advisory: Red Hat Developer Hub 1.4.0 release.
Notes
Topic
Red Hat Developer Hub 1.4 has been released.
Details
Red Hat Developer Hub (RHDH) is Red Hat's enterprise-grade, self-managed, customizable developer portal based on Backstage.io. RHDH is supported on OpenShift and other major Kubernetes clusters (AKS, EKS, GKE). The core features of RHDH include a single pane of glass, a centralized software catalog, self-service via golden path templates, and Tech Docs. RHDH is extensible by plugins.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Developer Hub 1.4 has been released.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Developer Hub (RHDH) is Red Hat\u0027s enterprise-grade, self-managed, customizable developer portal based on Backstage.io. RHDH is supported on OpenShift and other major Kubernetes clusters (AKS, EKS, GKE). The core features of RHDH include a single pane of glass, a centralized software catalog, self-service via golden path templates, and Tech Docs. RHDH is extensible by plugins.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHBA-2024:11265",
"url": "https://access.redhat.com/errata/RHBA-2024:11265"
},
{
"category": "external",
"summary": "https://developers.redhat.com/rhdh/overview",
"url": "https://developers.redhat.com/rhdh/overview"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_developer_hub",
"url": "https://docs.redhat.com/en/documentation/red_hat_developer_hub"
},
{
"category": "external",
"summary": "https://catalog.redhat.com/search?gs\u0026searchType=containers\u0026q=rhdh",
"url": "https://catalog.redhat.com/search?gs\u0026searchType=containers\u0026q=rhdh"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-21536",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-21538",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45296",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45590",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45815",
"url": "https://access.redhat.com/security/cve/CVE-2024-45815"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45816",
"url": "https://access.redhat.com/security/cve/CVE-2024-45816"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-46976",
"url": "https://access.redhat.com/security/cve/CVE-2024-46976"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-47762",
"url": "https://access.redhat.com/security/cve/CVE-2024-47762"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhba-2024_11265.json"
}
],
"title": "Red Hat Bug Fix Advisory: Red Hat Developer Hub 1.4.0 release.",
"tracking": {
"current_release_date": "2025-09-10T15:43:05+00:00",
"generator": {
"date": "2025-09-10T15:43:05+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.7"
}
},
"id": "RHBA-2024:11265",
"initial_release_date": "2024-12-17T15:12:17+00:00",
"revision_history": [
{
"date": "2024-12-17T15:12:17+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-02-12T15:12:17+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-10T15:43:05+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Developer Hub (RHDH) 1.4",
"product": {
"name": "Red Hat Developer Hub (RHDH) 1.4",
"product_id": "Red Hat Developer Hub (RHDH) 1.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhdh:1.4::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Developer Hub (RHDH)"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-hub-rhel9@sha256%3A48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3?arch=amd64\u0026repository_url=registry.redhat.io/rhdh\u0026tag=1.4-1734106454"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-rhel9-operator@sha256%3A448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721?arch=amd64\u0026repository_url=registry.redhat.io/rhdh\u0026tag=1.4-1734106469"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-operator-bundle@sha256%3A2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15?arch=amd64\u0026repository_url=registry.redhat.io/rhdh\u0026tag=1.4-1734113472"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64 as a component of Red Hat Developer Hub (RHDH) 1.4",
"product_id": "Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"relates_to_product_reference": "Red Hat Developer Hub (RHDH) 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64 as a component of Red Hat Developer Hub (RHDH) 1.4",
"product_id": "Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"relates_to_product_reference": "Red Hat Developer Hub (RHDH) 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64 as a component of Red Hat Developer Hub (RHDH) 1.4",
"product_id": "Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64",
"relates_to_product_reference": "Red Hat Developer Hub (RHDH) 1.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T15:12:17+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:11265"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-21538",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-11-08T13:44:29.182678+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324550"
}
],
"notes": [
{
"category": "description",
"text": "A Regular Expression Denial of Service (ReDoS) vulnerability was found in the cross-spawn package for Node.js. Due to improper input sanitization, an attacker can increase CPU usage and crash the program with a large, specially crafted string.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cross-spawn: regular expression denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "RHBZ#2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/pull/160",
"url": "https://github.com/moxystudio/node-cross-spawn/pull/160"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230",
"url": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230"
}
],
"release_date": "2024-11-08T05:00:04.695000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T15:12:17+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:11265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "cross-spawn: regular expression denial of service"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T15:12:17+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:11265"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T15:12:17+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:11265"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-45815",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2024-09-17T21:20:06.780788+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312952"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the backstage/plugin-catalog-backend package. A malicious actor with authenticated access to a Backstage instance with the catalog backend plugin installed is able to interrupt the service using a specially crafted query to the catalog API.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "plugin-catalog-backend: prototype pollution vulnerability",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45815"
},
{
"category": "external",
"summary": "RHBZ#2312952",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312952"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45815",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45815"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45815",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45815"
},
{
"category": "external",
"summary": "https://github.com/backstage/backstage/security/advisories/GHSA-3x3f-jcp3-g22j",
"url": "https://github.com/backstage/backstage/security/advisories/GHSA-3x3f-jcp3-g22j"
}
],
"release_date": "2024-09-17T21:15:12.320000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T15:12:17+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:11265"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "plugin-catalog-backend: prototype pollution vulnerability"
},
{
"cve": "CVE-2024-45816",
"cwe": {
"id": "CWE-23",
"name": "Relative Path Traversal"
},
"discovery_date": "2024-09-17T21:20:09.051855+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312953"
}
],
"notes": [
{
"category": "description",
"text": "A directory traversal vulnerability was found in the backstage/plugin-techdocs-backend package. When using the AWS S3 or GCS storage provider for TechDocs, it is possible to access content in the entire storage bucket. This can leak contents of the bucket that are not intended to be accessible, as well as bypass permission checks in Backstage.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "plugin-techdocs-backend: storage bucket directory traversal in TechDocs",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45816"
},
{
"category": "external",
"summary": "RHBZ#2312953",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312953"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45816",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45816"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45816",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45816"
},
{
"category": "external",
"summary": "https://github.com/backstage/backstage/security/advisories/GHSA-39v3-f278-vj3g",
"url": "https://github.com/backstage/backstage/security/advisories/GHSA-39v3-f278-vj3g"
}
],
"release_date": "2024-09-17T21:15:12.553000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T15:12:17+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:11265"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "plugin-techdocs-backend: storage bucket directory traversal in TechDocs"
},
{
"cve": "CVE-2024-46976",
"cwe": {
"id": "CWE-693",
"name": "Protection Mechanism Failure"
},
"discovery_date": "2024-09-17T21:20:11.815685+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312954"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the backstage/plugin-techdocs-backend package. An attacker with control of the contents of the TechDocs storage buckets may be able to inject executable scripts in the TechDocs content that will be executed in the victim\u0027s browser when browsing documentation or navigating to an attacker provided link.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "plugin-techdocs-backend: circumvention of XSS protection in TechDocs",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-46976"
},
{
"category": "external",
"summary": "RHBZ#2312954",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312954"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-46976",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46976"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-46976",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-46976"
},
{
"category": "external",
"summary": "https://github.com/backstage/backstage/security/advisories/GHSA-5j94-f3mf-8685",
"url": "https://github.com/backstage/backstage/security/advisories/GHSA-5j94-f3mf-8685"
}
],
"release_date": "2024-09-17T21:15:12.763000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T15:12:17+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:11265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "plugin-techdocs-backend: circumvention of XSS protection in TechDocs"
},
{
"cve": "CVE-2024-47762",
"cwe": {
"id": "CWE-440",
"name": "Expected Behavior Violation"
},
"discovery_date": "2024-10-03T18:01:14.495619+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2316342"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the backstage/plugin-app-backend package. Configurations supplied through APP_CONFIG_* environment variables unexpectedly ignore the visibility defined in the configuration schema, potentially exposing sensitive configuration details intended to remain private or restricted to backend processes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "backstage/plugin-app-backend: Unexpected visibility of environment variable configurations in @backstage/plugin-app-backend",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-47762"
},
{
"category": "external",
"summary": "RHBZ#2316342",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2316342"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-47762",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47762"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-47762",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47762"
},
{
"category": "external",
"summary": "https://github.com/backstage/backstage/commit/323e6129073c5cb4cc106a1239eaec31a129554f",
"url": "https://github.com/backstage/backstage/commit/323e6129073c5cb4cc106a1239eaec31a129554f"
},
{
"category": "external",
"summary": "https://github.com/backstage/backstage/security/advisories/GHSA-qc4v-xq2m-65wc",
"url": "https://github.com/backstage/backstage/security/advisories/GHSA-qc4v-xq2m-65wc"
}
],
"release_date": "2024-10-03T17:14:34.529000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T15:12:17+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:11265"
},
{
"category": "workaround",
"details": "Avoid supplying secrets using the APP_CONFIG_* configuration pattern. Consider alternative methods such as the environment variable substitution.\n\nSee this link for more information about environment variable substitution: https://backstage.io/docs/conf/writing/#environment-variable-substitution",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "backstage/plugin-app-backend: Unexpected visibility of environment variable configurations in @backstage/plugin-app-backend"
}
]
}
rhsa-2024:10962
Vulnerability from csaf_redhat
Published
2024-12-11 16:47
Modified
2025-09-10 15:43
Summary
Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.4 release
Notes
Topic
A new version of Red Hat OpenShift distributed tracing platform (Jaeger) has been released
Details
Red Hat OpenShift distributed tracing platform based on Jaeger. Jaeger is a project inspired by Dapper and OpenZipkin. It is a distributed tracing system released as open source by Uber Technologies. It is used for monitoring and troubleshooting microservices-based distributed systems.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A new version of Red Hat OpenShift distributed tracing platform (Jaeger) has been released",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift distributed tracing platform based on Jaeger. Jaeger is a project inspired by Dapper and OpenZipkin. It is a distributed tracing system released as open source by Uber Technologies. It is used for monitoring and troubleshooting microservices-based distributed systems.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10962",
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/distributed_tracing/distributed-tracing-platform-jaeger",
"url": "https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/distributed_tracing/distributed-tracing-platform-jaeger"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-21536",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-43796",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-43799",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-43800",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45296",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45590",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45811",
"url": "https://access.redhat.com/security/cve/CVE-2024-45811"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45812",
"url": "https://access.redhat.com/security/cve/CVE-2024-45812"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-47068",
"url": "https://access.redhat.com/security/cve/CVE-2024-47068"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10962.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.4 release",
"tracking": {
"current_release_date": "2025-09-10T15:43:09+00:00",
"generator": {
"date": "2025-09-10T15:43:09+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.7"
}
},
"id": "RHSA-2024:10962",
"initial_release_date": "2024-12-11T16:47:10+00:00",
"revision_history": [
{
"date": "2024-12-11T16:47:10+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-03-25T16:47:10+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-10T15:43:09+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift distributed tracing 3.4",
"product": {
"name": "Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_distributed_tracing:3.4::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift distributed tracing"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Aeebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-operator-bundle@sha256%3A44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3Abf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Afd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Ac254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Ada3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3Aa7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Ab7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Afed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Ae8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Aceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3Ac81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Ae537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Abb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3Ae7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3Ab541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3Ab0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3A44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Ab9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3Afe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-45811",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2024-09-17T20:00:49.944925+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312930"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ViteJS. `@fs` denies access to files outside of Vite serving allow list. Adding `?import\u0026raw` to the URL bypasses this limitation and returns the file content if it exists, which can allow an attacker to access arbitrary files via the browser.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vite: server.fs.deny is bypassed when using `?import\u0026raw`",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate rather than high severity because it requires specific conditions for exploitation. The attacker must have access to the Vite server, which typically runs in a local development environment rather than in production. Additionally, the bypass allows file access only if the file path is already known or predictable, limiting the attacker\u0027s ability to arbitrarily explore the file system. While it exposes file content outside the Vite serving allow list, the scope of access is constrained, and the impact can be mitigated by proper server configurations and deployment practices.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45811"
},
{
"category": "external",
"summary": "RHBZ#2312930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312930"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45811",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45811"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite",
"url": "https://github.com/vitejs/vite"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/4573a6fd6f1b097fb7296a3e135e0646b996b249",
"url": "https://github.com/vitejs/vite/commit/4573a6fd6f1b097fb7296a3e135e0646b996b249"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/6820bb3b9a54334f3268fc5ee1e967d2e1c0db34",
"url": "https://github.com/vitejs/vite/commit/6820bb3b9a54334f3268fc5ee1e967d2e1c0db34"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/8339d7408668686bae56eaccbfdc7b87612904bd",
"url": "https://github.com/vitejs/vite/commit/8339d7408668686bae56eaccbfdc7b87612904bd"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/a6da45082b6e73ddfdcdcc06bb5414f976a388d6",
"url": "https://github.com/vitejs/vite/commit/a6da45082b6e73ddfdcdcc06bb5414f976a388d6"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/b901438f99e667f76662840826eec91c8ab3b3e7",
"url": "https://github.com/vitejs/vite/commit/b901438f99e667f76662840826eec91c8ab3b3e7"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx",
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx"
}
],
"release_date": "2024-09-17T18:44:12+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vite: server.fs.deny is bypassed when using `?import\u0026raw`"
},
{
"cve": "CVE-2024-45812",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-17T20:20:07.064245+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312935"
}
],
"notes": [
{
"category": "description",
"text": "A DOM clobbering vulnerability was found in ViteJS. This may lead to cross-site scripting (XSS) attacks on websites that include Vite-bundled files configured with an output format of cjs, iife, or umd, and allow users to inject certain scriptless HTML tags without properly sanitizing the name or id attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vite: XSS via DOM Clobbering gadget found in vite bundled scripts",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is classified as moderate severity rather than important due to the specific conditions required to exploit the vulnerability. While DOM Clobbering can lead to Cross-Site Scripting (XSS), the attack surface is relatively limited. Exploitation is contingent on the presence of unsanitized user-supplied HTML with certain scriptless attributes (`name`, `id`) and the use of particular Vite build outputs (`cjs`, `iife`, `umd`). In environments following proper input sanitization practices, the risk is significantly mitigated. Moreover, the vulnerability does not enable direct code injection or compromise by default but rather leverages existing script elements, reducing the likelihood of widespread exploitation compared to higher severity issues.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45812"
},
{
"category": "external",
"summary": "RHBZ#2312935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312935"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45812",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45812"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45812",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45812"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/ade1d89660e17eedfd35652165b0c26905259fad",
"url": "https://github.com/vitejs/vite/commit/ade1d89660e17eedfd35652165b0c26905259fad"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3",
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-09-17T20:15:06.037000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vite: XSS via DOM Clobbering gadget found in vite bundled scripts"
},
{
"cve": "CVE-2024-47068",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-23T16:20:20.383320+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2314249"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Rollup module bundler for JavaScript. Certain versions are susceptible to a DOM Clobbering vulnerability when bundling scripts with properties from `import.meta` such as `import.meta.url` in the `cjs`/`umd`/`iife` format. The DOM Clobbering gadget can lead to cross-site scripting (XSS) in web pages where scriptless attacker-controlled HTML elements are present, for example, an `img` tag with an unsanitized `name` attribute.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate severity rather than important because it requires a specific and relatively uncommon attack vector to exploit\u2014namely, attacker-controlled scriptless HTML elements, such as an unsanitized name attribute in an img tag, which are typically less prevalent in well-maintained web applications. Additionally, the impact is limited to scenarios where import.meta is improperly handled in specific module formats (`cjs`, `umd`, `iife`), and the vulnerability can only lead to cross-site scripting (XSS) under specific conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-47068"
},
{
"category": "external",
"summary": "RHBZ#2314249",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314249"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-47068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47068"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-47068",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47068"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L157-L162",
"url": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L157-L162"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L180-L185",
"url": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L180-L185"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4",
"url": "https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541",
"url": "https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm",
"url": "https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm"
}
],
"release_date": "2024-09-23T16:15:06.947000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS"
}
]
}
rhba-2024:9054
Vulnerability from csaf_redhat
Published
2024-11-11 01:39
Modified
2025-09-10 13:33
Summary
Red Hat Bug Fix Advisory: Red Hat Developer Hub 1.3.1 bugfix release
Notes
Topic
Red Hat Developer Hub 1.3.1 has been released.
Details
Red Hat Developer Hub (RHDH) is Red Hat's enterprise-grade, self-managed,
customizable developer portal based on Backstage.io. RHDH is supported on
OpenShift and other major Kubernetes clusters (AKS, EKS, GKE). The core features
of RHDH include a single pane of glass, a centralized software catalog,
self-service via golden path templates, and Tech Docs. RHDH is extensible by
plugins.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Developer Hub 1.3.1 has been released.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Developer Hub (RHDH) is Red Hat\u0027s enterprise-grade, self-managed,\ncustomizable developer portal based on Backstage.io. RHDH is supported on\nOpenShift and other major Kubernetes clusters (AKS, EKS, GKE). The core features\nof RHDH include a single pane of glass, a centralized software catalog,\nself-service via golden path templates, and Tech Docs. RHDH is extensible by\nplugins.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHBA-2024:9054",
"url": "https://access.redhat.com/errata/RHBA-2024:9054"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_developer_hub/1.3",
"url": "https://docs.redhat.com/en/documentation/red_hat_developer_hub/1.3"
},
{
"category": "external",
"summary": "RHIDP-4343",
"url": "https://issues.redhat.com/browse/RHIDP-4343"
},
{
"category": "external",
"summary": "RHIDP-4344",
"url": "https://issues.redhat.com/browse/RHIDP-4344"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhba-2024_9054.json"
}
],
"title": "Red Hat Bug Fix Advisory: Red Hat Developer Hub 1.3.1 bugfix release",
"tracking": {
"current_release_date": "2025-09-10T13:33:57+00:00",
"generator": {
"date": "2025-09-10T13:33:57+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.7"
}
},
"id": "RHBA-2024:9054",
"initial_release_date": "2024-11-11T01:39:34+00:00",
"revision_history": [
{
"date": "2024-11-11T01:39:34+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-11-11T01:39:34+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-10T13:33:57+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Developer Hub 1.3 for RHEL 9",
"product": {
"name": "Red Hat Developer Hub 1.3 for RHEL 9",
"product_id": "9Base-RHDH-1.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhdh:1.3::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Developer Hub"
},
{
"branches": [
{
"category": "product_version",
"name": "rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64",
"product": {
"name": "rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64",
"product_id": "rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-hub-rhel9\u0026tag=1.3-124"
}
}
},
{
"category": "product_version",
"name": "rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"product": {
"name": "rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"product_id": "rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-operator-bundle\u0026tag=1.3-118"
}
}
},
{
"category": "product_version",
"name": "rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64",
"product": {
"name": "rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64",
"product_id": "rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-rhel9-operator\u0026tag=1.3-119"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64 as a component of Red Hat Developer Hub 1.3 for RHEL 9",
"product_id": "9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64"
},
"product_reference": "rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64",
"relates_to_product_reference": "9Base-RHDH-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64 as a component of Red Hat Developer Hub 1.3 for RHEL 9",
"product_id": "9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64"
},
"product_reference": "rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"relates_to_product_reference": "9Base-RHDH-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64 as a component of Red Hat Developer Hub 1.3 for RHEL 9",
"product_id": "9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
},
"product_reference": "rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64",
"relates_to_product_reference": "9Base-RHDH-1.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-11T01:39:34+00:00",
"details": "To install the Red Hat Developer Hub 1.3, follow the instructions linked from the References section.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:9054"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-37890",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292777"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Node.js WebSocket library (ws). A request with several headers exceeding the \u0027server.maxHeadersCount\u0027 threshold could be used to crash a ws server, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-ws: denial of service when handling a request with many HTTP headers",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-37890"
},
{
"category": "external",
"summary": "RHBZ#2292777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292777"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37890"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-37890",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37890"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/security/advisories/GHSA-3h5v-q93c-6h6q",
"url": "https://github.com/websockets/ws/security/advisories/GHSA-3h5v-q93c-6h6q"
}
],
"release_date": "2024-06-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-11T01:39:34+00:00",
"details": "To install the Red Hat Developer Hub 1.3, follow the instructions linked from the References section.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:9054"
},
{
"category": "workaround",
"details": "The issue can be mitigated by reducing the maximum allowed length of the request headers using the --max-http-header-size=size or the maxHeaderSize options so that no more headers than the server.maxHeadersCount limit can be sent. The issue can be mitigated also by seting server.maxHeadersCount to 0.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-ws: denial of service when handling a request with many HTTP headers"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-11T01:39:34+00:00",
"details": "To install the Red Hat Developer Hub 1.3, follow the instructions linked from the References section.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:9054"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
}
]
}
rhsa-2025:4511
Vulnerability from csaf_redhat
Published
2025-05-06 07:14
Modified
2025-09-10 15:38
Summary
Red Hat Security Advisory: RHODF-4.18-RHEL-9 security update
Notes
Topic
Updated images are now available for RHODF-4.18-RHEL-9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift DataFoundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an S3 compatible API.
Security Fix(es):
* express: cause malformed URLs to be evaluated (CVE-2024-29041)
* npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript (CVE-2024-11831)
* http-proxy-middleware: Denial of Service (CVE-2024-21536)
* go-jose: Go JOSE's Parsing Vulnerable to Denial of Service (CVE-2025-27144)
* golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws (CVE-2025-22868)
* golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh (CVE-2025-22869)
* golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing (CVE-2025-30204)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for RHODF-4.18-RHEL-9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift DataFoundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an S3 compatible API.\n\nSecurity Fix(es):\n\n* express: cause malformed URLs to be evaluated (CVE-2024-29041)\n\n* npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript (CVE-2024-11831)\n\n* http-proxy-middleware: Denial of Service (CVE-2024-21536)\n\n* go-jose: Go JOSE\u0027s Parsing Vulnerable to Denial of Service (CVE-2025-27144)\n\n* golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws (CVE-2025-22868)\n\n* golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh (CVE-2025-22869)\n\n* golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing (CVE-2025-30204)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:4511",
"url": "https://access.redhat.com/errata/RHSA-2025:4511"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2290901",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290901"
},
{
"category": "external",
"summary": "2312579",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312579"
},
{
"category": "external",
"summary": "2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "2347423",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2347423"
},
{
"category": "external",
"summary": "2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "2348367",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348367"
},
{
"category": "external",
"summary": "2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "DFBUGS-1798",
"url": "https://issues.redhat.com/browse/DFBUGS-1798"
},
{
"category": "external",
"summary": "DFBUGS-269",
"url": "https://issues.redhat.com/browse/DFBUGS-269"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_4511.json"
}
],
"title": "Red Hat Security Advisory: RHODF-4.18-RHEL-9 security update",
"tracking": {
"current_release_date": "2025-09-10T15:38:41+00:00",
"generator": {
"date": "2025-09-10T15:38:41+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.7"
}
},
"id": "RHSA-2025:4511",
"initial_release_date": "2025-05-06T07:14:59+00:00",
"revision_history": [
{
"date": "2025-05-06T07:14:59+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-05-06T07:14:59+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-10T15:38:41+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHODF 4.18 for RHEL 9",
"product": {
"name": "RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_data_foundation:4.18::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Data Foundation"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"product_id": "odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.18.2-8"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"product": {
"name": "odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"product_id": "odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.18.2-7"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"product_id": "odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.18.2-7"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"product_id": "odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"product_id": "odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"product_id": "odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.18.2-8"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"product_id": "odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.18.2-6"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.18.2-8"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"product_id": "odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"product_id": "odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.18.2-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"product_id": "odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"product": {
"name": "odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"product_id": "odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.18.2-7"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.18.2-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"product": {
"name": "odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"product_id": "odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-dependencies-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.18.2-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.18.2-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"product_id": "odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"product": {
"name": "odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"product_id": "odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"product_id": "odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"product_id": "odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"product_id": "odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.18.2-9"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"product_id": "odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.18.2-8"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"product": {
"name": "odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"product_id": "odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.18.2-7"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"product_id": "odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.18.2-7"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"product_id": "odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"product_id": "odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"product_id": "odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.18.2-8"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"product_id": "odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.18.2-6"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.18.2-8"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"product_id": "odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"product_id": "odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.18.2-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"product_id": "odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"product": {
"name": "odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"product_id": "odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.18.2-7"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.18.2-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"product": {
"name": "odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"product_id": "odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-dependencies-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.18.2-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.18.2-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"product": {
"name": "odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"product_id": "odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"product_id": "odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"product_id": "odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"product_id": "odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.18.2-9"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"product_id": "odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.18.2-8"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"product": {
"name": "odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"product_id": "odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.18.2-7"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"product_id": "odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.18.2-7"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"product_id": "odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"product_id": "odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"product_id": "odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.18.2-8"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"product_id": "odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.18.2-6"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.18.2-8"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"product_id": "odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"product_id": "odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.18.2-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"product_id": "odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"product": {
"name": "odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"product_id": "odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.18.2-7"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.18.2-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"product": {
"name": "odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"product_id": "odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-dependencies-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.18.2-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.18.2-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"product_id": "odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"product": {
"name": "odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"product_id": "odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"product_id": "odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"product_id": "odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"product_id": "odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.18.2-11"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.18.2-9"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325?arch=arm64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.18.2-7"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"product_id": "odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.18.2-7"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"product_id": "odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.18.2-6"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"product_id": "odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.18.2-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"product_id": "odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.18.2-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.18.2-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"product_id": "odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.18.2-5"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"product_id": "odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.18.2-5"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x"
},
"product_reference": "odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64"
},
"product_reference": "odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le"
},
"product_reference": "odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64"
},
"product_reference": "odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le"
},
"product_reference": "odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x"
},
"product_reference": "odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le"
},
"product_reference": "odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x"
},
"product_reference": "odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64"
},
"product_reference": "odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64"
},
"product_reference": "odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le"
},
"product_reference": "odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x"
},
"product_reference": "odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64 as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"relates_to_product_reference": "9Base-RHODF-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le as a component of RHODF 4.18 for RHEL 9",
"product_id": "9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.18"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-11831",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-16T16:43:32.021000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312579"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in npm-serialize-javascript. The vulnerability occurs because the serialize-javascript module does not properly sanitize certain inputs, such as regex or other JavaScript object types, allowing an attacker to inject malicious code. This code could be executed when deserialized by a web browser, causing Cross-site scripting (XSS) attacks. This issue is critical in environments where serialized data is sent to web clients, potentially compromising the security of the website or web application using this package.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-11831"
},
{
"category": "external",
"summary": "RHBZ#2312579",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312579"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-11831",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11831"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-11831",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-11831"
},
{
"category": "external",
"summary": "https://github.com/yahoo/serialize-javascript/commit/f27d65d3de42affe2aac14607066c293891cec4e",
"url": "https://github.com/yahoo/serialize-javascript/commit/f27d65d3de42affe2aac14607066c293891cec4e"
},
{
"category": "external",
"summary": "https://github.com/yahoo/serialize-javascript/pull/173",
"url": "https://github.com/yahoo/serialize-javascript/pull/173"
}
],
"release_date": "2024-09-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-06T07:14:59+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:4511"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript"
},
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-06T07:14:59+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:4511"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-29041",
"cwe": {
"id": "CWE-601",
"name": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)"
},
"discovery_date": "2024-06-07T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2290901"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Express.js minimalist web framework for node. Upstream versions of Express.js before 4.19.0 and all pre-release alpha and beta versions of 5.0 are affected by an open redirect vulnerability using malformed URLs. When a user of Express performs a redirect using a user-provided URL, Express performs an encode [using `encodeurl`](https://github.com/pillarjs/encodeurl) on the contents before passing it to the `location` header. This issue can cause malformed URLs to be evaluated in unexpected ways by common redirect allow list implementations in Express applications, leading to an Open Redirect via bypass of a properly implemented allow list. The main method impacted is `res.location()`, but this is also called from within `res.redirect()`. The vulnerability is fixed in upstream version 4.19.2 and 5.0.0-beta.3.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: cause malformed URLs to be evaluated",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Fuse 7 only uses express as part of build time development dependency, it is not part of the final product delivery.\n\nUpstream versions should not be relied upon for ultimate determination of affectedness. Red Hat might backport fixes from upstream versions on a case by case basis.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-29041"
},
{
"category": "external",
"summary": "RHBZ#2290901",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290901"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-29041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29041"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-29041",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29041"
},
{
"category": "external",
"summary": "https://expressjs.com/en/4x/api.html#res.location",
"url": "https://expressjs.com/en/4x/api.html#res.location"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/0867302ddbde0e9463d0564fea5861feb708c2dd",
"url": "https://github.com/expressjs/express/commit/0867302ddbde0e9463d0564fea5861feb708c2dd"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/0b746953c4bd8e377123527db11f9cd866e39f94",
"url": "https://github.com/expressjs/express/commit/0b746953c4bd8e377123527db11f9cd866e39f94"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/pull/5539",
"url": "https://github.com/expressjs/express/pull/5539"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-rv95-896h-c2vc",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-rv95-896h-c2vc"
},
{
"category": "external",
"summary": "https://github.com/koajs/koa/issues/1800",
"url": "https://github.com/koajs/koa/issues/1800"
}
],
"release_date": "2024-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-06T07:14:59+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:4511"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "express: cause malformed URLs to be evaluated"
},
{
"acknowledgments": [
{
"names": [
"jub0bs"
]
}
],
"cve": "CVE-2025-22868",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2025-02-26T04:00:44.350024+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348366"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, \".\")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64"
],
"known_not_affected": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "RHBZ#2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868"
},
{
"category": "external",
"summary": "https://go.dev/cl/652155",
"url": "https://go.dev/cl/652155"
},
{
"category": "external",
"summary": "https://go.dev/issue/71490",
"url": "https://go.dev/issue/71490"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3488",
"url": "https://pkg.go.dev/vuln/GO-2025-3488"
}
],
"release_date": "2025-02-26T03:07:49.012000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-06T07:14:59+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:4511"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, it is recommended to pre-validate any payloads passed to `go-jose` to check that they do not contain an excessive amount of `.` characters.",
"product_ids": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws"
},
{
"cve": "CVE-2025-22869",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-02-26T04:00:47.683125+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348367"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang.org/x/crypto/ssh package. SSH clients and servers are vulnerable to increased resource consumption, possibly leading to memory exhaustion and a DoS. This can occur during key exchange when the other party is slow to respond during key exchange.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While this flaw affects both SSH clients and servers implemented with golang.org/x/crypto/ssh, realistically the flaw will only lead to a DoS when transferring large files, greatly reducing the likelihood of exploitation.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "RHBZ#2348367",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348367"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22869",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22869"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22869",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22869"
},
{
"category": "external",
"summary": "https://go.dev/cl/652135",
"url": "https://go.dev/cl/652135"
},
{
"category": "external",
"summary": "https://go.dev/issue/71931",
"url": "https://go.dev/issue/71931"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3487",
"url": "https://pkg.go.dev/vuln/GO-2025-3487"
}
],
"release_date": "2025-02-26T03:07:48.855000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-06T07:14:59+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:4511"
},
{
"category": "workaround",
"details": "This flaw can be mitigated when using the client only connecting to trusted servers.",
"product_ids": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh"
},
{
"cve": "CVE-2025-27144",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-02-24T23:00:42.448432+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2347423"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GO-JOSE. In affected versions, when parsing compact JWS or JWE input, Go JOSE could use excessive memory. The code uses strings.Split(token, \".\") to split JWT tokens, which is vulnerable to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. This issue could be exploied by sending numerous malformed tokens, leading to memory exhaustion and a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go-jose: Go JOSE\u0027s Parsing Vulnerable to Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-770: Allocation of Resources Without Limits or Throttling vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nThe platform enforces hardening guidelines to apply the most restrictive settings required for operations, while baseline configurations maintain secure system and software states. A defense-in-depth monitoring strategy includes perimeter firewalls and endpoint protection services that detect excessive resource usage caused by malicious activity or system misconfigurations. In the event of exploitation, process isolation ensures workloads operate in separate environments, preventing any single process from overconsuming CPU or memory and degrading system performance.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
],
"known_not_affected": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-27144"
},
{
"category": "external",
"summary": "RHBZ#2347423",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2347423"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-27144",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27144"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-27144",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-27144"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/commit/99b346cec4e86d102284642c5dcbe9bb0cacfc22",
"url": "https://github.com/go-jose/go-jose/commit/99b346cec4e86d102284642c5dcbe9bb0cacfc22"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/releases/tag/v4.0.5",
"url": "https://github.com/go-jose/go-jose/releases/tag/v4.0.5"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-c6gw-w398-hv78",
"url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-c6gw-w398-hv78"
}
],
"release_date": "2025-02-24T22:22:22.863000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-06T07:14:59+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:4511"
},
{
"category": "workaround",
"details": "As a workaround, applications can pre-validate that payloads being passed to Go JOSE do not contain an excessive number of `.` characters.",
"product_ids": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go-jose: Go JOSE\u0027s Parsing Vulnerable to Denial of Service"
},
{
"cve": "CVE-2025-30204",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2025-03-21T22:00:43.818367+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2354195"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
],
"known_not_affected": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "RHBZ#2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3",
"url": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp",
"url": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3553",
"url": "https://pkg.go.dev/vuln/GO-2025-3553"
}
],
"release_date": "2025-03-21T21:42:01.382000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-06T07:14:59+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:4511"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have a recommended mitigation at this time.",
"product_ids": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:8fe453c13e2512584f376df5e68b0349279ae48b3d80bf30853d0e29114172d1_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:b7b818d10993d363959d6dc050267122e3151a3cf1e2dc33e9e3da000a309892_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-operator-bundle@sha256:c70c3bf6f04381731a7c8b362e84c0562db8bfd035b0830876da9867c61d5913_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:0468019ad7726920c8b8308a4e2b23e833d1447d78e4a7994297899eaf96cd67_s390x",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:8801eb57d77777f95346f2d544650952fb89c3c364d77b775b20d203974a0325_arm64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:cb751b6f6f0384e16d7764df1d9240d7dc4b7deb3d9a58a4ffbdb67cea3932d3_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9-operator@sha256:e627398b6cd1f4eae720de593a826d6a8ff7dec4acfcb01a1003592044c59c8a_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:5bce68f3ecb18da15dd044ef9d83cc3be06ff4d35f0d8958e166197dc300b5a7_ppc64le",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:6a5a346682e532a42d0d1df3e11d8c16e01a8c22d03a65743b70c8bef2ef17d4_amd64",
"9Base-RHODF-4.18:odf4/cephcsi-rhel9@sha256:b12969001d0ccbdea864ae2b95cf2df109a9644ba294171a2e286a4e24261717_s390x",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:20f211424d72d67d9e05e0c5fe0a27291673ff0f4223677a8f25d8bf333eaf3a_arm64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:838edd5022e35412215026b3fd7f87a681c7f6925d927074005c34d88ff991ae_amd64",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:ad5b8a59f261bb6d5d82327cfbb8d90771dc0df4daf6daec163214c8f09b116b_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-core-rhel9@sha256:cef0430b3f1f3e1b0f728a5384c73492f9addbc8690868285be07e7eaa04c534_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:9034d6f37fb5bc4fc0a5e3b58a995f25a502f0d396c918f18d81a6d8d852e741_s390x",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:980b36c7905338b274045078a5ebfac2e20a52c7a9d6133dd104ff47c19a95d8_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-operator-bundle@sha256:f7981eb58f8f965e1eef8fef50bf58e6fbf92c54fc5c376d34adeff39427db68_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:3d46991237b01a405cabf10e15072edd1fafefc0641b120a6578b40bebf62efa_ppc64le",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:851cf1c9d24083d806a9da2c4f8dc25ef67dfdf18ad882bf0980fab0d7d824d1_s390x",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:f1c7a74c9580a7d6725f1fef5aea3467e3bc6548c947e9804b9b9d6b9c56eb1e_amd64",
"9Base-RHODF-4.18:odf4/mcg-rhel9-operator@sha256:fc9475589ce8ca4f74014d43a7692a91cd1b2b30c9d3b73f38155224734fb4e8_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:00e88ad3e5d29ac067163e93cb1ee716e8bf63bf90cd2ff09020a217d055db28_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:398d2529a7a226cfae3aeba3a83c9d4e1a92bc5439fdc37f98fff895ad1efd7e_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-console-rhel9@sha256:acbffcf670ccd88666bf75b2d8b2be1e38dfa990b6ddd56a586ca7c74df7b37b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:4a8a9b9f0f910df0c03bade56acd47f4027cb2a603cfb710dbd95b366d56992d_s390x",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:a7785285506015834c240a5cfd2416865d77d5bf261d6a8b9f5bc4431f22cb2c_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-operator-bundle@sha256:c182b55222bec9f15aa56cc479eb701bb8fb91a291a5d6ba5c3511a9f0a10866_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:755db8e93622c0edf5eddacb005d2411d09384425dcfa10690400c6dcdc5228e_amd64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:dc4db8e33107450531de8c9bd1ce22bddccbb6bead8fe784f8bed7107ec32733_arm64",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:e30d8117f60ed99c40321cf776f5c5ef2c8f2b0c4623100886e4dacada78ef8b_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-client-rhel9-operator@sha256:fef3ff1de91d49d3b3b58a016ea20b3dfc12a6d99d7d10e002190db61704ad31_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:4487d33876e8f5f6950325d71e411c2156aa90ad6c7edeb00bb8aa97109edc2d_s390x",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:576db43dd6ea1ef3841b570c081ccef96cb451af94ec23200740bbae6ad3b618_amd64",
"9Base-RHODF-4.18:odf4/ocs-metrics-exporter-rhel9@sha256:6c054aac0e723c69d342c078d79fadf8cd07279d1c48506c14a7fba737b3ec20_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:07fc3267e737d5d7cbd6c2e0dd5b12401bbf0a4cf2a645848251fee8436c3883_amd64",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:299c2dee126c361e5160e9d72c2b50d43518425b34d4520d517936a61cb51f93_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-operator-bundle@sha256:b32a2f2dac7037376f85241966d2cb334c616798b0483b15d298ac8a17d11fcf_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:20bcd918063ef6c652b9a5825fbfd15a0124f11c44ee124644ab077b92abf3fa_amd64",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:af338d2a0879003b97fc2445017f0cac90d4914e55806a533197d3b3d87367f0_s390x",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:bab2c514bcf3dcdb126e40b5bab49d42179ebc088cf9d76298295d83f18b8015_ppc64le",
"9Base-RHODF-4.18:odf4/ocs-rhel9-operator@sha256:e6f5e191147f1d053dc5c4add4dc0298bc3d6fd0ff6c76a8d7ad92449ddec84a_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:3ecfef6468658d97038c63a589eea501b38fa0b0444423e5402aa6f9737fc117_s390x",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:592e901fd958d501ba64c97dc86c9927f3853084ad9f02a7c9f4087c57a394c3_arm64",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:6a127c317e7b2b75e2af574efa06a92eb699446ee5acd2382f2c8719a62a3d85_ppc64le",
"9Base-RHODF-4.18:odf4/odf-cli-rhel9@sha256:df51195e607189f6a1e6f365e5b682c0a4a18ac52b49335d2b18d714c2b4d039_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:49119045f93991b6631ba6b8e30d3aef3cd2ee54b15c42bdcf0dcb1f45ceda9e_amd64",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ab015a61b46656ae81ae9c7651d3bedf701fe9a7edfed176c7cd9b7de45e86e4_ppc64le",
"9Base-RHODF-4.18:odf4/odf-console-rhel9@sha256:ac7b9fb592032b280763a448a5e0fc26feb6bb186421bdd716d68ba77e591357_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:27177665f5c5dd3fa54442efa8d749def23013aad2f59520d6ddd538495e7c9e_s390x",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:7473e8e39964771a5758c08d0a07803f4874cb31e6325589e81382933df8b971_amd64",
"9Base-RHODF-4.18:odf4/odf-cosi-sidecar-rhel9@sha256:9912f2b66be65a944e1d3b71d12578aece93589d8add68b628475910ee8bb71b_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:aa931d81acd91fe7a8b55a97684ca1a17586b7636ce9334bd85c188c7a1a5c04_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:b29425a3772ce19d1b0c3e815f0c0fd9cda6e3e37dd2d41c4f0e0cf5dc6b966c_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-operator-bundle@sha256:cccb0a027c2dd4ca6e0e01c574cd9912b2df489e2c00e2c1060e131beb30e86c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:0cf51da5f7dcb31b55332f36a98e248a16fa7568c8b6b5e293b3fd83d99e2375_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:6675b58f28936b51e294692ada0d148ec78a22bc39f1202b11381795b1d09451_s390x",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:c1fc5c80766a8511b1bf27a872f65c1db187f62d429fb4d3a0e95fd319b31fbe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-rhel9-operator@sha256:e45f4f647301aa79078480445b8de62da74a90b454904a1725be7348bdf2222f_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:10330c64a1b1bd0e8832d247c9842229187d4d4620d9d4e6286a780c5b512fad_arm64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:465206671be9e2c7b49428c6211ecfb6c505a87ed04903f962208a2f9aaa1686_amd64",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:95fc931dfef8c4690ee3b7f028eddebec86609dd54d11c28cf9fc479e87ee9fe_ppc64le",
"9Base-RHODF-4.18:odf4/odf-csi-addons-sidecar-rhel9@sha256:a37ff4a4d763fd93966dd5b0f961903fe321f62bb8abb7af2014d115d574f442_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:01c58987e90e7d00f88c7d0843b4687a3577964ad9f3f4bb45a7f3bfca52ac8c_ppc64le",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:429b52d62c5348e54ab6534b6d74623ec1013b5509c4c266d2e2f429ac9ac2e4_s390x",
"9Base-RHODF-4.18:odf4/odf-dependencies-operator-bundle@sha256:900fb1126749701bdb5a95b6e0336bcd580d6f880456bdd719a6fa1855db0e15_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:88df1fbb3e3f026a2eaa722a43572e6dc542cf5f1d97594235e94109f3f7efb5_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:9626ed56d4c6352b4ccf505a1ba963fea408a2fd04b79ca41d65feb1bad08cb2_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-console-rhel9@sha256:a291a9cf6839fa575c83157562d5345ff0cdf0b954be75f0601d444268484f4c_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:177ce31ffa994da8809e42ab91f6b8eba442362a746ab43f66de77c1d6bee7ac_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:47998468b3209cb118a756ea974bcf8d11b36e9aa60e1bfafb8531af56b21670_amd64",
"9Base-RHODF-4.18:odf4/odf-multicluster-operator-bundle@sha256:c61e7ade3f0edcf6f7126aa4d5fb2735425be88774378f1d777e69cffb728ade_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:30f465999e780be7d78f99d1b4df3b85d81edb5a7a2d3590d6a1800d81a6985f_ppc64le",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:5e8a09ce6abae27e4b99635285d214733193d2f5b7f9cf09a1c9b7fa4d407a7b_s390x",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:7eab4e2de8363ca3aaf5029c2980b571eb598616b91bb19fa1ca1a29de349f48_arm64",
"9Base-RHODF-4.18:odf4/odf-multicluster-rhel9-operator@sha256:a94281733007bc107934c5d66587618164dca78476f383db98ab4f7525c96d91_amd64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:0971755b68260e73ac938ac22494d8002fa08d31fea54b9fa7abeee802bbe161_arm64",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:4aba718909dbe25c3a35d8745a07aa840f106c36633f02a3950e4e67d8e56805_s390x",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:63498d0a07d79df661e5e56ec1d8abce28e8a8d5e0c2368cf3af003e46cf5d8e_ppc64le",
"9Base-RHODF-4.18:odf4/odf-must-gather-rhel9@sha256:81734769461cc6ddfca106ad2b7951c42b7717f42d9d4ef123204f8b44678588_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:003cc16996a5eb56719f6634ce889cfec20abce23ed85b3eae4da75fd773abaf_amd64",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:81aefa5b6d39d3c9197485a8f958604319c7712559015cf3a1f1c7ad915049f1_ppc64le",
"9Base-RHODF-4.18:odf4/odf-operator-bundle@sha256:e56d39c644c36a5a3ff80282fae5c3eff077c2823c55c0ba06483404bba3a4f4_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:3b660a0898277b3ac4bfbf6d63f395881877ad74cdcab5c0fe7a5ecd4fb8becd_s390x",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:aa00d9e2ae7dbb38465be294086379b6d819c9ce30d488fb74386a6054161968_amd64",
"9Base-RHODF-4.18:odf4/odf-prometheus-operator-bundle@sha256:ace8564973e4fcf01e140e995c24eb8d9d50ad283047aa93074dcffda8649e26_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:274eb504a5664bd9c282c5c321ad0dbf62a641979c57a8656dd159a8e04aa3c1_amd64",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:4bddecaf5072c05c0350538c1680bd3c15a3e933b9362b288477ef1d052cb0e8_s390x",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:9c823417bb470c5551785e2bfb6ddf3cb8cae1be8840b26d9dd7f36f4227acd9_ppc64le",
"9Base-RHODF-4.18:odf4/odf-rhel9-operator@sha256:c0ac393b4e3e075d6bce9cb09cde9bba82618d0b25c20d24da4d4f972bf29d36_arm64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:02076fc7edf3649f207740bc08d80d8e5d60b26ca1449e615206c7a6b44447b5_amd64",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:9b12d4e7c97c15720b6e36c56107ccf6f4ab2902d64f4885ab91ee8321489ba3_s390x",
"9Base-RHODF-4.18:odf4/odr-cluster-operator-bundle@sha256:ef8a18b6646b196f503418d71d62e954c4162182982fb2d3a4c6463b2dfa6927_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:3d772e5d7ce539ee7e337fa78f0cdf166992776f878f4013854d3d14d891831e_amd64",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:548835c83ce43522e64ce26ba39f961caeb92af446db13356a8d6eb9829fb480_ppc64le",
"9Base-RHODF-4.18:odf4/odr-hub-operator-bundle@sha256:791660be24a0f942996c47a21bed3ad12ae5caf30731461ee983ce79243e7648_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:2409bd600e9731643206b5f15b7ab76a46a385499fd74c9c30040fd6cdc86d29_amd64",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:99da14f1a2dff046388d29fdd9dd0a2c6ad29ff6b3f2500e44f92a8e9d3a0efb_s390x",
"9Base-RHODF-4.18:odf4/odr-recipe-operator-bundle@sha256:eb451e23f02ef7033e314f4b351240fbfcd28ff5e878e521d2b26f172b971730_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:2b185deb2c668b129a4dbdd0a6074c21fdfdaf7126b2805941607e952c3d7311_s390x",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:69b803b4de3a4bb69e246ea5515029a144e203ee9c00a14cf3081615c07c1ba1_amd64",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:da8d6e09d517eb1fc151df94fd2f3bcb765963fe48b4ee441c798e81758abf6f_ppc64le",
"9Base-RHODF-4.18:odf4/odr-rhel9-operator@sha256:fe90e3f4cdee963af4f990a8050fdcdc3a81bf990699ef69292c8c4bc0d30842_arm64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:39b898e22c521776e750e16d19c7e2aebb85ae38ce360e9cf26691418ab0b59f_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:a0e1886cfae4db92b3caaaac2c61d0262d9516036312886af12efecad86e2db8_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-operator-bundle@sha256:f1b7343d2f290b61112a96a39af4beaf6e6c08e41730647a417522a40dbd237f_ppc64le",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1415f2742de966c300ee4593162c3bc9068ff6448bf6eb8f86a3c9d0b02405a5_s390x",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:1adda1e8ebacd72ee2caffea502a45591bb575d4f3ec69de61772bb5f641aa58_amd64",
"9Base-RHODF-4.18:odf4/rook-ceph-rhel9-operator@sha256:f7629be614f7a97e95b5611f025955592f43f1d2e151a8c8a18f57ede92e504a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing"
}
]
}
rhsa-2025:8510
Vulnerability from csaf_redhat
Published
2025-06-04 12:26
Modified
2025-09-11 10:58
Summary
Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.8.7 security and bug fix update
Notes
Topic
The Migration Toolkit for Containers (MTC) 1.8.7 is now available.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
The Migration Toolkit for Containers (MTC) enables you to migrate Kubernetes resources, persistent volume data, and internal container images between OpenShift Container Platform clusters, using the MTC web console or the Kubernetes API.
Security Fix(es) from Bugzilla:
* golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html (CVE-2024-45338)
* golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws (CVE-2025-22868)
* golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing (CVE-2025-30204)
* http-proxy-middleware: Denial of Service (CVE-2024-21536)
* cross-spawn: regular expression denial of service (CVE-2024-21538)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "The Migration Toolkit for Containers (MTC) 1.8.7 is now available.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Migration Toolkit for Containers (MTC) enables you to migrate Kubernetes resources, persistent volume data, and internal container images between OpenShift Container Platform clusters, using the MTC web console or the Kubernetes API.\n\nSecurity Fix(es) from Bugzilla:\n\n* golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html (CVE-2024-45338)\n\n* golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws (CVE-2025-22868)\n\n* golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing (CVE-2025-30204)\n\n* http-proxy-middleware: Denial of Service (CVE-2024-21536)\n\n* cross-spawn: regular expression denial of service (CVE-2024-21538)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:8510",
"url": "https://access.redhat.com/errata/RHSA-2025:8510"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "2333122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333122"
},
{
"category": "external",
"summary": "2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "MIG-1733",
"url": "https://issues.redhat.com/browse/MIG-1733"
},
{
"category": "external",
"summary": "MIG-1735",
"url": "https://issues.redhat.com/browse/MIG-1735"
},
{
"category": "external",
"summary": "MIG-1738",
"url": "https://issues.redhat.com/browse/MIG-1738"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_8510.json"
}
],
"title": "Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.8.7 security and bug fix update",
"tracking": {
"current_release_date": "2025-09-11T10:58:34+00:00",
"generator": {
"date": "2025-09-11T10:58:34+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.7"
}
},
"id": "RHSA-2025:8510",
"initial_release_date": "2025-06-04T12:26:00+00:00",
"revision_history": [
{
"date": "2025-06-04T12:26:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-06-04T12:26:00+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-11T10:58:34+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "8Base-RHMTC-1.8",
"product": {
"name": "8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhmt:1.8::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Migration Toolkit"
},
{
"branches": [
{
"category": "product_version",
"name": "rhmtc/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a_amd64",
"product": {
"name": "rhmtc/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a_amd64",
"product_id": "rhmtc/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-controller-rhel8\u0026tag=v1.8.7-3"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900_amd64",
"product": {
"name": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900_amd64",
"product_id": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-hook-runner-rhel8\u0026tag=v1.8.7-2"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923_amd64",
"product": {
"name": "rhmtc/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923_amd64",
"product_id": "rhmtc/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-log-reader-rhel8\u0026tag=v1.8.7-2"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad_amd64",
"product": {
"name": "rhmtc/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad_amd64",
"product_id": "rhmtc/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-must-gather-rhel8\u0026tag=v1.8.7-2"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5_amd64",
"product": {
"name": "rhmtc/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5_amd64",
"product_id": "rhmtc/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-openvpn-rhel8\u0026tag=v1.8.7-1"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d_amd64",
"product": {
"name": "rhmtc/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d_amd64",
"product_id": "rhmtc/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-rhel8-operator\u0026tag=v1.8.7-5"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b_amd64",
"product": {
"name": "rhmtc/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b_amd64",
"product_id": "rhmtc/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-operator-bundle\u0026tag=v1.8.7-8"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d_amd64",
"product": {
"name": "rhmtc/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d_amd64",
"product_id": "rhmtc/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-registry-rhel8\u0026tag=v1.8.7-1"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123_amd64",
"product": {
"name": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123_amd64",
"product_id": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-rsync-transfer-rhel8\u0026tag=v1.8.7-1"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58_amd64",
"product": {
"name": "rhmtc/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58_amd64",
"product_id": "rhmtc/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-ui-rhel8\u0026tag=v1.8.7-2"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42_amd64",
"product": {
"name": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42_amd64",
"product_id": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8\u0026tag=v1.8.7-1"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a_amd64"
},
"product_reference": "rhmtc/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900_amd64"
},
"product_reference": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923_amd64"
},
"product_reference": "rhmtc/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad_amd64"
},
"product_reference": "rhmtc/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5_amd64"
},
"product_reference": "rhmtc/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b_amd64"
},
"product_reference": "rhmtc/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d_amd64"
},
"product_reference": "rhmtc/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d_amd64"
},
"product_reference": "rhmtc/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123_amd64"
},
"product_reference": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58_amd64"
},
"product_reference": "rhmtc/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42_amd64"
},
"product_reference": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T12:26:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8510"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-21538",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-11-08T13:44:29.182678+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324550"
}
],
"notes": [
{
"category": "description",
"text": "A Regular Expression Denial of Service (ReDoS) vulnerability was found in the cross-spawn package for Node.js. Due to improper input sanitization, an attacker can increase CPU usage and crash the program with a large, specially crafted string.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cross-spawn: regular expression denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "RHBZ#2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/pull/160",
"url": "https://github.com/moxystudio/node-cross-spawn/pull/160"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230",
"url": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230"
}
],
"release_date": "2024-11-08T05:00:04.695000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T12:26:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8510"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "cross-spawn: regular expression denial of service"
},
{
"cve": "CVE-2024-45338",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2024-12-18T21:00:59.938173+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2333122"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/html. This flaw allows an attacker to craft input to the parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This issue can cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as an Important severity because an attacker can craft malicious input that causes the parsing functions to process data non-linearly, resulting in significant delays which leads to a denial of service by exhausting system resources.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45338"
},
{
"category": "external",
"summary": "RHBZ#2333122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333122"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45338"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338"
},
{
"category": "external",
"summary": "https://go.dev/cl/637536",
"url": "https://go.dev/cl/637536"
},
{
"category": "external",
"summary": "https://go.dev/issue/70906",
"url": "https://go.dev/issue/70906"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ",
"url": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3333",
"url": "https://pkg.go.dev/vuln/GO-2024-3333"
}
],
"release_date": "2024-12-18T20:38:22.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T12:26:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8510"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html"
},
{
"acknowledgments": [
{
"names": [
"jub0bs"
]
}
],
"cve": "CVE-2025-22868",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2025-02-26T04:00:44.350024+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348366"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, \".\")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "RHBZ#2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868"
},
{
"category": "external",
"summary": "https://go.dev/cl/652155",
"url": "https://go.dev/cl/652155"
},
{
"category": "external",
"summary": "https://go.dev/issue/71490",
"url": "https://go.dev/issue/71490"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3488",
"url": "https://pkg.go.dev/vuln/GO-2025-3488"
}
],
"release_date": "2025-02-26T03:07:49.012000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T12:26:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8510"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, it is recommended to pre-validate any payloads passed to `go-jose` to check that they do not contain an excessive amount of `.` characters.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws"
},
{
"cve": "CVE-2025-30204",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2025-03-21T22:00:43.818367+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2354195"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "RHBZ#2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3",
"url": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp",
"url": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3553",
"url": "https://pkg.go.dev/vuln/GO-2025-3553"
}
],
"release_date": "2025-03-21T21:42:01.382000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T12:26:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8510"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have a recommended mitigation at this time.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:0c83726f520790b68fba4926299c9a8327d2316d8d0aff472b64aad586a7a39a_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:e58aec84cb80cd57ef37038e83ca60113c8cb7998923806decd901355db06900_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:2b887879f51ba42555bc166e2b5e44265a8ecce87d35ffe698054bd8394c5923_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:e63f4262e1a95f5913a812437ec9bf25aa8903e8c41574b6f7b69b8f8bc850ad_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:68aab51a9d9bf099124738d9e7506b357e0f194924f34dded268c2027e9e4dc5_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:6611752875c270468d29fc6ff63c6d66aaa2675c0e524937180ff8ee93215b4b_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:bedabe364c8eef1627a9eb6f96737448df680ab090cecfdcfe20af90dac5240d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:6761863f92e894c1c0b019d4a640bfc872c6dcebcf18ce1abbe83691cae45a1d_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:f64466725f6a76d47c191bbe50c7526add0774b04bccb9dabd8166c01e992123_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:596f8ae61f2bb56e19e5e03bf7d114ff0607a7f381d6177b3cc0df2cfdcf1e58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:9a0002e60e5115d60cdaa09b852aca0ceaa704b35a864695afb384694bbf9d42_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing"
}
]
}
rhsa-2025:8544
Vulnerability from csaf_redhat
Published
2025-06-04 20:11
Modified
2025-09-11 10:58
Summary
Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.15.14 Bug Fix Update
Notes
Topic
Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.15.14 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.
Details
Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an S3 compatible API.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.15.14 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an S3 compatible API.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:8544",
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2270863",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270863"
},
{
"category": "external",
"summary": "2290901",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290901"
},
{
"category": "external",
"summary": "2292777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292777"
},
{
"category": "external",
"summary": "2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2312579",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312579"
},
{
"category": "external",
"summary": "2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "2333122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333122"
},
{
"category": "external",
"summary": "2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "DFBUGS-1034",
"url": "https://issues.redhat.com/browse/DFBUGS-1034"
},
{
"category": "external",
"summary": "DFBUGS-2604",
"url": "https://issues.redhat.com/browse/DFBUGS-2604"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_8544.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.15.14 Bug Fix Update",
"tracking": {
"current_release_date": "2025-09-11T10:58:34+00:00",
"generator": {
"date": "2025-09-11T10:58:34+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.7"
}
},
"id": "RHSA-2025:8544",
"initial_release_date": "2025-06-04T20:11:19+00:00",
"revision_history": [
{
"date": "2025-06-04T20:11:19+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-06-04T20:11:19+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-11T10:58:34+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHODF 4.15 for RHEL 9",
"product": {
"name": "RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_data_foundation:4.15::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Data Foundation"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"product_id": "odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"product_id": "odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"product_id": "odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"product_id": "odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"product_id": "odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"product_id": "odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"product_id": "odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"product_id": "odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"product_id": "odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"product": {
"name": "odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"product_id": "odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"product_id": "odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"product": {
"name": "odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"product_id": "odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"product_id": "odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"product_id": "odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"product_id": "odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.15.14-4"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"product_id": "odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"product_id": "odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"product_id": "odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"product_id": "odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"product_id": "odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"product_id": "odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"product_id": "odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"product_id": "odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"product_id": "odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"product": {
"name": "odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"product_id": "odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"product": {
"name": "odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"product_id": "odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"product_id": "odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"product_id": "odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"product_id": "odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.15.14-4"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"product_id": "odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"product_id": "odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"product_id": "odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"product_id": "odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"product_id": "odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"product_id": "odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"product_id": "odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"product_id": "odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"product_id": "odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"product": {
"name": "odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"product_id": "odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"product_id": "odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"product": {
"name": "odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"product_id": "odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"product_id": "odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"product_id": "odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"product_id": "odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.15.14-4"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"product_id": "odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"product_id": "odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"product_id": "odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"product_id": "odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"product_id": "odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"product_id": "odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.15.14-1"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le"
},
"product_reference": "odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64"
},
"product_reference": "odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x"
},
"product_reference": "odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64"
},
"product_reference": "odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le"
},
"product_reference": "odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x"
},
"product_reference": "odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-11831",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-16T16:43:32.021000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312579"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in npm-serialize-javascript. The vulnerability occurs because the serialize-javascript module does not properly sanitize certain inputs, such as regex or other JavaScript object types, allowing an attacker to inject malicious code. This code could be executed when deserialized by a web browser, causing Cross-site scripting (XSS) attacks. This issue is critical in environments where serialized data is sent to web clients, potentially compromising the security of the website or web application using this package.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-11831"
},
{
"category": "external",
"summary": "RHBZ#2312579",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312579"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-11831",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11831"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-11831",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-11831"
},
{
"category": "external",
"summary": "https://github.com/yahoo/serialize-javascript/commit/f27d65d3de42affe2aac14607066c293891cec4e",
"url": "https://github.com/yahoo/serialize-javascript/commit/f27d65d3de42affe2aac14607066c293891cec4e"
},
{
"category": "external",
"summary": "https://github.com/yahoo/serialize-javascript/pull/173",
"url": "https://github.com/yahoo/serialize-javascript/pull/173"
}
],
"release_date": "2024-09-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T20:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript"
},
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T20:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-21538",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-11-08T13:44:29.182678+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324550"
}
],
"notes": [
{
"category": "description",
"text": "A Regular Expression Denial of Service (ReDoS) vulnerability was found in the cross-spawn package for Node.js. Due to improper input sanitization, an attacker can increase CPU usage and crash the program with a large, specially crafted string.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cross-spawn: regular expression denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "RHBZ#2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/pull/160",
"url": "https://github.com/moxystudio/node-cross-spawn/pull/160"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230",
"url": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230"
}
],
"release_date": "2024-11-08T05:00:04.695000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T20:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "cross-spawn: regular expression denial of service"
},
{
"cve": "CVE-2024-29041",
"cwe": {
"id": "CWE-601",
"name": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)"
},
"discovery_date": "2024-06-07T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2290901"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Express.js minimalist web framework for node. Upstream versions of Express.js before 4.19.0 and all pre-release alpha and beta versions of 5.0 are affected by an open redirect vulnerability using malformed URLs. When a user of Express performs a redirect using a user-provided URL, Express performs an encode [using `encodeurl`](https://github.com/pillarjs/encodeurl) on the contents before passing it to the `location` header. This issue can cause malformed URLs to be evaluated in unexpected ways by common redirect allow list implementations in Express applications, leading to an Open Redirect via bypass of a properly implemented allow list. The main method impacted is `res.location()`, but this is also called from within `res.redirect()`. The vulnerability is fixed in upstream version 4.19.2 and 5.0.0-beta.3.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: cause malformed URLs to be evaluated",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Fuse 7 only uses express as part of build time development dependency, it is not part of the final product delivery.\n\nUpstream versions should not be relied upon for ultimate determination of affectedness. Red Hat might backport fixes from upstream versions on a case by case basis.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-29041"
},
{
"category": "external",
"summary": "RHBZ#2290901",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290901"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-29041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29041"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-29041",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29041"
},
{
"category": "external",
"summary": "https://expressjs.com/en/4x/api.html#res.location",
"url": "https://expressjs.com/en/4x/api.html#res.location"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/0867302ddbde0e9463d0564fea5861feb708c2dd",
"url": "https://github.com/expressjs/express/commit/0867302ddbde0e9463d0564fea5861feb708c2dd"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/0b746953c4bd8e377123527db11f9cd866e39f94",
"url": "https://github.com/expressjs/express/commit/0b746953c4bd8e377123527db11f9cd866e39f94"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/pull/5539",
"url": "https://github.com/expressjs/express/pull/5539"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-rv95-896h-c2vc",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-rv95-896h-c2vc"
},
{
"category": "external",
"summary": "https://github.com/koajs/koa/issues/1800",
"url": "https://github.com/koajs/koa/issues/1800"
}
],
"release_date": "2024-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T20:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "express: cause malformed URLs to be evaluated"
},
{
"cve": "CVE-2024-29180",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2024-03-21T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2270863"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the webpack-dev-middleware package, where it failed to validate the supplied URL address sufficiently before returning local files. This flaw allows an attacker to craft URLs to return arbitrary local files from the developer\u0027s machine. The lack of normalization before calling the middleware also allows the attacker to perform path traversal attacks on the target environment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack-dev-middleware: lack of URL validation may lead to file leak",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability in webpack-dev represents a important security issue due to its potential to expose sensitive files and compromise developer machines. By failing to validate URLs and normalize paths effectively, the middleware allows attackers to craft malicious requests that can retrieve arbitrary local files or perform unauthorized path traversal. This could lead to unauthorized access to confidential information, including source code, configuration files, and even system-level files. Given the widespread use of webpack-dev-middleware in web development environments, addressing this vulnerability promptly is important to prevent serious data breaches and protect the integrity of development processes.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-29180"
},
{
"category": "external",
"summary": "RHBZ#2270863",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270863"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-29180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29180"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-29180",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29180"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack-dev-middleware/security/advisories/GHSA-wr3j-pwj9-hqq6",
"url": "https://github.com/webpack/webpack-dev-middleware/security/advisories/GHSA-wr3j-pwj9-hqq6"
}
],
"release_date": "2024-03-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T20:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "webpack-dev-middleware: lack of URL validation may lead to file leak"
},
{
"cve": "CVE-2024-37890",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292777"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Node.js WebSocket library (ws). A request with several headers exceeding the \u0027server.maxHeadersCount\u0027 threshold could be used to crash a ws server, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-ws: denial of service when handling a request with many HTTP headers",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-37890"
},
{
"category": "external",
"summary": "RHBZ#2292777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292777"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37890"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-37890",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37890"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/security/advisories/GHSA-3h5v-q93c-6h6q",
"url": "https://github.com/websockets/ws/security/advisories/GHSA-3h5v-q93c-6h6q"
}
],
"release_date": "2024-06-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T20:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
},
{
"category": "workaround",
"details": "The issue can be mitigated by reducing the maximum allowed length of the request headers using the --max-http-header-size=size or the maxHeaderSize options so that no more headers than the server.maxHeadersCount limit can be sent. The issue can be mitigated also by seting server.maxHeadersCount to 0.",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-ws: denial of service when handling a request with many HTTP headers"
},
{
"cve": "CVE-2024-39249",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-07-01T20:20:32+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295035"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the async Node.js package. A Regular expression Denial of Service (ReDoS) attack can potentially be triggered via the autoinject function while parsing specially crafted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-async: Regular expression denial of service while parsing function in autoinject",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39249"
},
{
"category": "external",
"summary": "RHBZ#2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39249",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39249"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6"
},
{
"category": "external",
"summary": "https://github.com/zunak/CVE-2024-39249",
"url": "https://github.com/zunak/CVE-2024-39249"
}
],
"release_date": "2024-07-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T20:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-async: Regular expression denial of service while parsing function in autoinject"
},
{
"cve": "CVE-2024-45338",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2024-12-18T21:00:59.938173+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2333122"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/html. This flaw allows an attacker to craft input to the parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This issue can cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as an Important severity because an attacker can craft malicious input that causes the parsing functions to process data non-linearly, resulting in significant delays which leads to a denial of service by exhausting system resources.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64"
],
"known_not_affected": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45338"
},
{
"category": "external",
"summary": "RHBZ#2333122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333122"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45338"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338"
},
{
"category": "external",
"summary": "https://go.dev/cl/637536",
"url": "https://go.dev/cl/637536"
},
{
"category": "external",
"summary": "https://go.dev/issue/70906",
"url": "https://go.dev/issue/70906"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ",
"url": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3333",
"url": "https://pkg.go.dev/vuln/GO-2024-3333"
}
],
"release_date": "2024-12-18T20:38:22.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T20:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T20:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-48910",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2024-10-31T15:00:53.609372+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2322949"
}
],
"notes": [
{
"category": "description",
"text": "A prototype pollution vulnerability was found in DOMPurify. This flaw allows a remote attacker to add or modify attributes of an object prototype. This issue can lead to the injection of malicious attributes used in other components or cause a crash by overriding existing attributes with ones of incompatible type.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dompurify: DOMPurify vulnerable to tampering by prototype pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The prototype pollution vulnerability in DOMPurify is considered a high-severity issue because it allows attackers to modify the prototype of built-in JavaScript objects, potentially impacting the entire application. This could lead to security risks, such as overwriting methods on fundamental objects like `Object`, `Array`, or `Function`, allowing attackers to manipulate application behavior, bypass security controls, or cause application crashes. Given that DOMPurify is a core library for sanitizing user input, an attacker exploiting this vulnerability could gain control over how sanitized content is processed, leading to the execution of malicious scripts or triggering other unintended behaviors across the application.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-48910"
},
{
"category": "external",
"summary": "RHBZ#2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-48910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48910"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc",
"url": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr",
"url": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr"
}
],
"release_date": "2024-10-31T14:22:52.867000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T20:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dompurify: DOMPurify vulnerable to tampering by prototype pollution"
},
{
"acknowledgments": [
{
"names": [
"jub0bs"
]
}
],
"cve": "CVE-2025-22868",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2025-02-26T04:00:44.350024+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348366"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, \".\")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le"
],
"known_not_affected": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "RHBZ#2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868"
},
{
"category": "external",
"summary": "https://go.dev/cl/652155",
"url": "https://go.dev/cl/652155"
},
{
"category": "external",
"summary": "https://go.dev/issue/71490",
"url": "https://go.dev/issue/71490"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3488",
"url": "https://pkg.go.dev/vuln/GO-2025-3488"
}
],
"release_date": "2025-02-26T03:07:49.012000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T20:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, it is recommended to pre-validate any payloads passed to `go-jose` to check that they do not contain an excessive amount of `.` characters.",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws"
},
{
"cve": "CVE-2025-30204",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2025-03-21T22:00:43.818367+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2354195"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le"
],
"known_not_affected": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "RHBZ#2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3",
"url": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp",
"url": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3553",
"url": "https://pkg.go.dev/vuln/GO-2025-3553"
}
],
"release_date": "2025-03-21T21:42:01.382000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T20:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have a recommended mitigation at this time.",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing"
}
]
}
rhsa-2024_11256
Vulnerability from csaf_redhat
Published
2024-12-17 11:08
Modified
2025-01-06 18:55
Summary
Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.1
Notes
Topic
Red Hat Trusted Profile Analyzer 1.2.1 release Red Hat Product Security has rated this update as having a security impact of Moderate
Details
Red Hat Trusted Profile Analyzer 1.2.1
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Trusted Profile Analyzer 1.2.1 release Red Hat Product Security has rated this update as having a security impact of Moderate",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Trusted Profile Analyzer 1.2.1",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:11256",
"url": "https://access.redhat.com/errata/RHSA-2024:11256"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1865",
"url": "https://issues.redhat.com/browse/TC-1865"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1873",
"url": "https://issues.redhat.com/browse/TC-1873"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1880",
"url": "https://issues.redhat.com/browse/TC-1880"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1892",
"url": "https://issues.redhat.com/browse/TC-1892"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1928",
"url": "https://issues.redhat.com/browse/TC-1928"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1947",
"url": "https://issues.redhat.com/browse/TC-1947"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1970",
"url": "https://issues.redhat.com/browse/TC-1970"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1868",
"url": "https://issues.redhat.com/browse/TC-1868"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1937",
"url": "https://issues.redhat.com/browse/TC-1937"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1795",
"url": "https://issues.redhat.com/browse/TC-1795"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1824",
"url": "https://issues.redhat.com/browse/TC-1824"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1870",
"url": "https://issues.redhat.com/browse/TC-1870"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2.1/html/release_notes/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2.1/html/release_notes/index"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_11256.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.1",
"tracking": {
"current_release_date": "2025-01-06T18:55:08+00:00",
"generator": {
"date": "2025-01-06T18:55:08+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2024:11256",
"initial_release_date": "2024-12-17T11:08:00+00:00",
"revision_history": [
{
"date": "2024-12-17T11:08:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-12-17T11:08:00+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-06T18:55:08+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Profile Analyzer 1.2",
"product": {
"name": "Red Hat Trusted Profile Analyzer 1.2",
"product_id": "Red Hat Trusted Profile Analyzer 1.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_profile_analyzer:1.2::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Profile Analyzer"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64",
"product": {
"name": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64",
"product_id": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhtpa-guac-rhel9@sha256%3A9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30?arch=amd64\u0026repository_url=registry.redhat.io/rhtpa\u0026tag=1.2.1-1733575106"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64 as a component of Red Hat Trusted Profile Analyzer 1.2",
"product_id": "Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
},
"product_reference": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64",
"relates_to_product_reference": "Red Hat Trusted Profile Analyzer 1.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-7254",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-09-19T01:20:29.981665+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2313454"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Protocol Buffers (protobuf). This issue can allows an attacker to cause a StackOverflow via parsing untrusted Protocol Buffers data containing arbitrarily nested SGROUP tags, leading to unbounded recursion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "protobuf: StackOverflow vulnerability in Protocol Buffers",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue represents a significant severity risk because unbounded recursion in Protocol Buffers parsing can be exploited to trigger stack overflows, leading to Denial of Service (DoS). When parsers, such as `DiscardUnknownFieldsParser` or the Java Protobuf Lite parser, encounter arbitrarily nested groups or deeply recursive map fields, the lack of recursion depth limits can result in uncontrolled stack growth. Attackers can craft malicious protobuf messages that deliberately exceed the stack\u0027s capacity, causing the application to crash or become unresponsive.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-7254"
},
{
"category": "external",
"summary": "RHBZ#2313454",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313454"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-7254",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7254"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-7254",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-7254"
},
{
"category": "external",
"summary": "https://github.com/protocolbuffers/protobuf/commit/cc8b3483a5584b3301e3d43d17eb59704857ffaa",
"url": "https://github.com/protocolbuffers/protobuf/commit/cc8b3483a5584b3301e3d43d17eb59704857ffaa"
}
],
"release_date": "2024-09-19T01:15:10.963000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T11:08:00+00:00",
"details": "It is recommended that existing users of RHTPA 1.2.0 upgrade to 1.2.1. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:11256"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "protobuf: StackOverflow vulnerability in Protocol Buffers"
},
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T11:08:00+00:00",
"details": "It is recommended that existing users of RHTPA 1.2.0 upgrade to 1.2.1. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:11256"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-21538",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-11-08T13:44:29.182678+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324550"
}
],
"notes": [
{
"category": "description",
"text": "A Regular Expression Denial of Service (ReDoS) vulnerability was found in the cross-spawn package for Node.js. Due to improper input sanitization, an attacker can increase CPU usage and crash the program with a large, specially crafted string.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cross-spawn: regular expression denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "RHBZ#2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/pull/160",
"url": "https://github.com/moxystudio/node-cross-spawn/pull/160"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230",
"url": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230"
}
],
"release_date": "2024-11-08T05:00:04.695000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T11:08:00+00:00",
"details": "It is recommended that existing users of RHTPA 1.2.0 upgrade to 1.2.1. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:11256"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:9cc0e1374aa5e6ff8caf86d9bbd6f9c2dfa14d812ad99ae653a2fbb8ec124f30_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "cross-spawn: regular expression denial of service"
}
]
}
rhsa-2024_11255
Vulnerability from csaf_redhat
Published
2024-12-17 10:22
Modified
2025-01-06 18:54
Summary
Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.1
Notes
Topic
Red Hat Trusted Profile Analyzer 1.2.1 release Red Hat Product Security has rated this update as having a security impact of Moderate
Details
Red Hat Trusted Profile Analyzer 1.2.1
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Trusted Profile Analyzer 1.2.1 release Red Hat Product Security has rated this update as having a security impact of Moderate",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Trusted Profile Analyzer 1.2.1",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:11255",
"url": "https://access.redhat.com/errata/RHSA-2024:11255"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1865",
"url": "https://issues.redhat.com/browse/TC-1865"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1873",
"url": "https://issues.redhat.com/browse/TC-1873"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1880",
"url": "https://issues.redhat.com/browse/TC-1880"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1892",
"url": "https://issues.redhat.com/browse/TC-1892"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1928",
"url": "https://issues.redhat.com/browse/TC-1928"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1947",
"url": "https://issues.redhat.com/browse/TC-1947"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1970",
"url": "https://issues.redhat.com/browse/TC-1970"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1868",
"url": "https://issues.redhat.com/browse/TC-1868"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1937",
"url": "https://issues.redhat.com/browse/TC-1937"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1795",
"url": "https://issues.redhat.com/browse/TC-1795"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1824",
"url": "https://issues.redhat.com/browse/TC-1824"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1870",
"url": "https://issues.redhat.com/browse/TC-1870"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2.1/html/release_notes/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2.1/html/release_notes/index"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_11255.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.1",
"tracking": {
"current_release_date": "2025-01-06T18:54:56+00:00",
"generator": {
"date": "2025-01-06T18:54:56+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2024:11255",
"initial_release_date": "2024-12-17T10:22:51+00:00",
"revision_history": [
{
"date": "2024-12-17T10:22:51+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-12-17T10:22:51+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-06T18:54:56+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Profile Analyzer 1.2",
"product": {
"name": "Red Hat Trusted Profile Analyzer 1.2",
"product_id": "Red Hat Trusted Profile Analyzer 1.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_profile_analyzer:1.2::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Profile Analyzer"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64",
"product": {
"name": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64",
"product_id": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhtpa-trustification-service-rhel9@sha256%3A8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe?arch=amd64\u0026repository_url=registry.redhat.io/rhtpa\u0026tag=1.2.1-1733826968"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64 as a component of Red Hat Trusted Profile Analyzer 1.2",
"product_id": "Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
},
"product_reference": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64",
"relates_to_product_reference": "Red Hat Trusted Profile Analyzer 1.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-7254",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-09-19T01:20:29.981665+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2313454"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Protocol Buffers (protobuf). This issue can allows an attacker to cause a StackOverflow via parsing untrusted Protocol Buffers data containing arbitrarily nested SGROUP tags, leading to unbounded recursion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "protobuf: StackOverflow vulnerability in Protocol Buffers",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue represents a significant severity risk because unbounded recursion in Protocol Buffers parsing can be exploited to trigger stack overflows, leading to Denial of Service (DoS). When parsers, such as `DiscardUnknownFieldsParser` or the Java Protobuf Lite parser, encounter arbitrarily nested groups or deeply recursive map fields, the lack of recursion depth limits can result in uncontrolled stack growth. Attackers can craft malicious protobuf messages that deliberately exceed the stack\u0027s capacity, causing the application to crash or become unresponsive.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-7254"
},
{
"category": "external",
"summary": "RHBZ#2313454",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313454"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-7254",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7254"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-7254",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-7254"
},
{
"category": "external",
"summary": "https://github.com/protocolbuffers/protobuf/commit/cc8b3483a5584b3301e3d43d17eb59704857ffaa",
"url": "https://github.com/protocolbuffers/protobuf/commit/cc8b3483a5584b3301e3d43d17eb59704857ffaa"
}
],
"release_date": "2024-09-19T01:15:10.963000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T10:22:51+00:00",
"details": "It is recommended that existing users of RHTPA 1.2.0 upgrade to 1.2.1. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:11255"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "protobuf: StackOverflow vulnerability in Protocol Buffers"
},
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T10:22:51+00:00",
"details": "It is recommended that existing users of RHTPA 1.2.0 upgrade to 1.2.1. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:11255"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-21538",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-11-08T13:44:29.182678+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324550"
}
],
"notes": [
{
"category": "description",
"text": "A Regular Expression Denial of Service (ReDoS) vulnerability was found in the cross-spawn package for Node.js. Due to improper input sanitization, an attacker can increase CPU usage and crash the program with a large, specially crafted string.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cross-spawn: regular expression denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "RHBZ#2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/pull/160",
"url": "https://github.com/moxystudio/node-cross-spawn/pull/160"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230",
"url": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230"
}
],
"release_date": "2024-11-08T05:00:04.695000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T10:22:51+00:00",
"details": "It is recommended that existing users of RHTPA 1.2.0 upgrade to 1.2.1. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:11255"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "cross-spawn: regular expression denial of service"
}
]
}
rhsa-2025:8059
Vulnerability from csaf_redhat
Published
2025-05-21 06:13
Modified
2025-09-11 10:58
Summary
Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17.7 Bug Fix Update
Notes
Topic
Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.17.7 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.
Details
Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an S3 compatible API.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.17.7 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an S3 compatible API.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:8059",
"url": "https://access.redhat.com/errata/RHSA-2025:8059"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "DFBUGS-1033",
"url": "https://issues.redhat.com/browse/DFBUGS-1033"
},
{
"category": "external",
"summary": "DFBUGS-1701",
"url": "https://issues.redhat.com/browse/DFBUGS-1701"
},
{
"category": "external",
"summary": "DFBUGS-331",
"url": "https://issues.redhat.com/browse/DFBUGS-331"
},
{
"category": "external",
"summary": "DFBUGS-530",
"url": "https://issues.redhat.com/browse/DFBUGS-530"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_8059.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17.7 Bug Fix Update",
"tracking": {
"current_release_date": "2025-09-11T10:58:33+00:00",
"generator": {
"date": "2025-09-11T10:58:33+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.7"
}
},
"id": "RHSA-2025:8059",
"initial_release_date": "2025-05-21T06:13:16+00:00",
"revision_history": [
{
"date": "2025-05-21T06:13:16+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-05-21T06:13:16+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-11T10:58:33+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHODF 4.17 for RHEL 9",
"product": {
"name": "RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_data_foundation:4.17::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Data Foundation"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"product_id": "odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"product": {
"name": "odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"product_id": "odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"product_id": "odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"product_id": "odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"product_id": "odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"product_id": "odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"product_id": "odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"product_id": "odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"product_id": "odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"product_id": "odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"product": {
"name": "odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"product_id": "odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"product_id": "odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"product": {
"name": "odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"product_id": "odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"product_id": "odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"product_id": "odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"product_id": "odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.17.7-2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"product_id": "odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"product": {
"name": "odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"product_id": "odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"product_id": "odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"product_id": "odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"product_id": "odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"product_id": "odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"product_id": "odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"product_id": "odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"product_id": "odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"product_id": "odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"product": {
"name": "odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"product_id": "odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"product_id": "odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"product": {
"name": "odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"product_id": "odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"product_id": "odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"product_id": "odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"product_id": "odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.17.7-2"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"product_id": "odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"product": {
"name": "odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"product_id": "odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"product_id": "odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"product_id": "odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"product_id": "odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"product_id": "odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"product_id": "odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"product_id": "odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"product_id": "odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"product_id": "odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"product": {
"name": "odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"product_id": "odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"product": {
"name": "odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"product_id": "odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"product_id": "odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"product_id": "odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"product_id": "odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.17.7-2"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07?arch=arm64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"product_id": "odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"product_id": "odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"product_id": "odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"product_id": "odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"product_id": "odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"product_id": "odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.17.7-1"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x"
},
"product_reference": "odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le"
},
"product_reference": "odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64"
},
"product_reference": "odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le"
},
"product_reference": "odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64"
},
"product_reference": "odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x"
},
"product_reference": "odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le"
},
"product_reference": "odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x"
},
"product_reference": "odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64"
},
"product_reference": "odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-11831",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-16T16:43:32.021000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312579"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in npm-serialize-javascript. The vulnerability occurs because the serialize-javascript module does not properly sanitize certain inputs, such as regex or other JavaScript object types, allowing an attacker to inject malicious code. This code could be executed when deserialized by a web browser, causing Cross-site scripting (XSS) attacks. This issue is critical in environments where serialized data is sent to web clients, potentially compromising the security of the website or web application using this package.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-11831"
},
{
"category": "external",
"summary": "RHBZ#2312579",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312579"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-11831",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11831"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-11831",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-11831"
},
{
"category": "external",
"summary": "https://github.com/yahoo/serialize-javascript/commit/f27d65d3de42affe2aac14607066c293891cec4e",
"url": "https://github.com/yahoo/serialize-javascript/commit/f27d65d3de42affe2aac14607066c293891cec4e"
},
{
"category": "external",
"summary": "https://github.com/yahoo/serialize-javascript/pull/173",
"url": "https://github.com/yahoo/serialize-javascript/pull/173"
}
],
"release_date": "2024-09-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-21T06:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8059"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript"
},
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-21T06:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8059"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-29041",
"cwe": {
"id": "CWE-601",
"name": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)"
},
"discovery_date": "2024-06-07T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2290901"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Express.js minimalist web framework for node. Upstream versions of Express.js before 4.19.0 and all pre-release alpha and beta versions of 5.0 are affected by an open redirect vulnerability using malformed URLs. When a user of Express performs a redirect using a user-provided URL, Express performs an encode [using `encodeurl`](https://github.com/pillarjs/encodeurl) on the contents before passing it to the `location` header. This issue can cause malformed URLs to be evaluated in unexpected ways by common redirect allow list implementations in Express applications, leading to an Open Redirect via bypass of a properly implemented allow list. The main method impacted is `res.location()`, but this is also called from within `res.redirect()`. The vulnerability is fixed in upstream version 4.19.2 and 5.0.0-beta.3.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: cause malformed URLs to be evaluated",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Fuse 7 only uses express as part of build time development dependency, it is not part of the final product delivery.\n\nUpstream versions should not be relied upon for ultimate determination of affectedness. Red Hat might backport fixes from upstream versions on a case by case basis.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-29041"
},
{
"category": "external",
"summary": "RHBZ#2290901",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290901"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-29041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29041"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-29041",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29041"
},
{
"category": "external",
"summary": "https://expressjs.com/en/4x/api.html#res.location",
"url": "https://expressjs.com/en/4x/api.html#res.location"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/0867302ddbde0e9463d0564fea5861feb708c2dd",
"url": "https://github.com/expressjs/express/commit/0867302ddbde0e9463d0564fea5861feb708c2dd"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/0b746953c4bd8e377123527db11f9cd866e39f94",
"url": "https://github.com/expressjs/express/commit/0b746953c4bd8e377123527db11f9cd866e39f94"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/pull/5539",
"url": "https://github.com/expressjs/express/pull/5539"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-rv95-896h-c2vc",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-rv95-896h-c2vc"
},
{
"category": "external",
"summary": "https://github.com/koajs/koa/issues/1800",
"url": "https://github.com/koajs/koa/issues/1800"
}
],
"release_date": "2024-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-21T06:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8059"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "express: cause malformed URLs to be evaluated"
},
{
"cve": "CVE-2024-39249",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-07-01T20:20:32+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295035"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the async Node.js package. A Regular expression Denial of Service (ReDoS) attack can potentially be triggered via the autoinject function while parsing specially crafted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-async: Regular expression denial of service while parsing function in autoinject",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39249"
},
{
"category": "external",
"summary": "RHBZ#2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39249",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39249"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6"
},
{
"category": "external",
"summary": "https://github.com/zunak/CVE-2024-39249",
"url": "https://github.com/zunak/CVE-2024-39249"
}
],
"release_date": "2024-07-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-21T06:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8059"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-async: Regular expression denial of service while parsing function in autoinject"
},
{
"cve": "CVE-2024-45338",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2024-12-18T21:00:59.938173+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2333122"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/html. This flaw allows an attacker to craft input to the parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This issue can cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as an Important severity because an attacker can craft malicious input that causes the parsing functions to process data non-linearly, resulting in significant delays which leads to a denial of service by exhausting system resources.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45338"
},
{
"category": "external",
"summary": "RHBZ#2333122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333122"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45338"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338"
},
{
"category": "external",
"summary": "https://go.dev/cl/637536",
"url": "https://go.dev/cl/637536"
},
{
"category": "external",
"summary": "https://go.dev/issue/70906",
"url": "https://go.dev/issue/70906"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ",
"url": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3333",
"url": "https://pkg.go.dev/vuln/GO-2024-3333"
}
],
"release_date": "2024-12-18T20:38:22.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-21T06:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8059"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-21T06:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8059"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2025-27144",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-02-24T23:00:42.448432+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2347423"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GO-JOSE. In affected versions, when parsing compact JWS or JWE input, Go JOSE could use excessive memory. The code uses strings.Split(token, \".\") to split JWT tokens, which is vulnerable to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. This issue could be exploied by sending numerous malformed tokens, leading to memory exhaustion and a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go-jose: Go JOSE\u0027s Parsing Vulnerable to Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-770: Allocation of Resources Without Limits or Throttling vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nThe platform enforces hardening guidelines to apply the most restrictive settings required for operations, while baseline configurations maintain secure system and software states. A defense-in-depth monitoring strategy includes perimeter firewalls and endpoint protection services that detect excessive resource usage caused by malicious activity or system misconfigurations. In the event of exploitation, process isolation ensures workloads operate in separate environments, preventing any single process from overconsuming CPU or memory and degrading system performance.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-27144"
},
{
"category": "external",
"summary": "RHBZ#2347423",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2347423"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-27144",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27144"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-27144",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-27144"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/commit/99b346cec4e86d102284642c5dcbe9bb0cacfc22",
"url": "https://github.com/go-jose/go-jose/commit/99b346cec4e86d102284642c5dcbe9bb0cacfc22"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/releases/tag/v4.0.5",
"url": "https://github.com/go-jose/go-jose/releases/tag/v4.0.5"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-c6gw-w398-hv78",
"url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-c6gw-w398-hv78"
}
],
"release_date": "2025-02-24T22:22:22.863000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-21T06:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8059"
},
{
"category": "workaround",
"details": "As a workaround, applications can pre-validate that payloads being passed to Go JOSE do not contain an excessive number of `.` characters.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go-jose: Go JOSE\u0027s Parsing Vulnerable to Denial of Service"
},
{
"cve": "CVE-2025-30204",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2025-03-21T22:00:43.818367+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2354195"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "RHBZ#2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3",
"url": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp",
"url": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3553",
"url": "https://pkg.go.dev/vuln/GO-2025-3553"
}
],
"release_date": "2025-03-21T21:42:01.382000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-21T06:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8059"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have a recommended mitigation at this time.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing"
}
]
}
RHSA-2024:11255
Vulnerability from csaf_redhat
Published
2024-12-17 10:22
Modified
2025-09-10 15:43
Summary
Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.1
Notes
Topic
Red Hat Trusted Profile Analyzer 1.2.1 release Red Hat Product Security has rated this update as having a security impact of Moderate
Details
Red Hat Trusted Profile Analyzer 1.2.1
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Trusted Profile Analyzer 1.2.1 release Red Hat Product Security has rated this update as having a security impact of Moderate",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Trusted Profile Analyzer 1.2.1",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:11255",
"url": "https://access.redhat.com/errata/RHSA-2024:11255"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1865",
"url": "https://issues.redhat.com/browse/TC-1865"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1873",
"url": "https://issues.redhat.com/browse/TC-1873"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1880",
"url": "https://issues.redhat.com/browse/TC-1880"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1892",
"url": "https://issues.redhat.com/browse/TC-1892"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1928",
"url": "https://issues.redhat.com/browse/TC-1928"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1947",
"url": "https://issues.redhat.com/browse/TC-1947"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1970",
"url": "https://issues.redhat.com/browse/TC-1970"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1868",
"url": "https://issues.redhat.com/browse/TC-1868"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1937",
"url": "https://issues.redhat.com/browse/TC-1937"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1795",
"url": "https://issues.redhat.com/browse/TC-1795"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1824",
"url": "https://issues.redhat.com/browse/TC-1824"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1870",
"url": "https://issues.redhat.com/browse/TC-1870"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2.1/html/release_notes/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2.1/html/release_notes/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-21536",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-21538",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-7254",
"url": "https://access.redhat.com/security/cve/CVE-2024-7254"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_11255.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.1",
"tracking": {
"current_release_date": "2025-09-10T15:43:11+00:00",
"generator": {
"date": "2025-09-10T15:43:11+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.7"
}
},
"id": "RHSA-2024:11255",
"initial_release_date": "2024-12-17T10:22:51+00:00",
"revision_history": [
{
"date": "2024-12-17T10:22:51+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-03-25T10:22:51+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-10T15:43:11+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Profile Analyzer 1.2",
"product": {
"name": "Red Hat Trusted Profile Analyzer 1.2",
"product_id": "Red Hat Trusted Profile Analyzer 1.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_profile_analyzer:1.2::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Profile Analyzer"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64",
"product": {
"name": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64",
"product_id": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhtpa-trustification-service-rhel9@sha256%3A8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe?arch=amd64\u0026repository_url=registry.redhat.io/rhtpa\u0026tag=1.2.1-1733826968"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64 as a component of Red Hat Trusted Profile Analyzer 1.2",
"product_id": "Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
},
"product_reference": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64",
"relates_to_product_reference": "Red Hat Trusted Profile Analyzer 1.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-7254",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-09-19T01:20:29.981665+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2313454"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Protocol Buffers (protobuf). This issue can allows an attacker to cause a StackOverflow via parsing untrusted Protocol Buffers data containing arbitrarily nested SGROUP tags, leading to unbounded recursion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "protobuf: StackOverflow vulnerability in Protocol Buffers",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue represents a significant severity risk because unbounded recursion in Protocol Buffers parsing can be exploited to trigger stack overflows, leading to Denial of Service (DoS). When parsers, such as `DiscardUnknownFieldsParser` or the Java Protobuf Lite parser, encounter arbitrarily nested groups or deeply recursive map fields, the lack of recursion depth limits can result in uncontrolled stack growth. Attackers can craft malicious protobuf messages that deliberately exceed the stack\u0027s capacity, causing the application to crash or become unresponsive.\n\nThe protobuf package as shipped in RHEL does not include the affected java or kotlin bindings, therefore RHEL is Not Affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-7254"
},
{
"category": "external",
"summary": "RHBZ#2313454",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313454"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-7254",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7254"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-7254",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-7254"
},
{
"category": "external",
"summary": "https://github.com/protocolbuffers/protobuf/commit/cc8b3483a5584b3301e3d43d17eb59704857ffaa",
"url": "https://github.com/protocolbuffers/protobuf/commit/cc8b3483a5584b3301e3d43d17eb59704857ffaa"
}
],
"release_date": "2024-09-19T01:15:10.963000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T10:22:51+00:00",
"details": "It is recommended that existing users of RHTPA 1.2.0 upgrade to 1.2.1. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:11255"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "protobuf: StackOverflow vulnerability in Protocol Buffers"
},
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T10:22:51+00:00",
"details": "It is recommended that existing users of RHTPA 1.2.0 upgrade to 1.2.1. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:11255"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-21538",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-11-08T13:44:29.182678+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324550"
}
],
"notes": [
{
"category": "description",
"text": "A Regular Expression Denial of Service (ReDoS) vulnerability was found in the cross-spawn package for Node.js. Due to improper input sanitization, an attacker can increase CPU usage and crash the program with a large, specially crafted string.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cross-spawn: regular expression denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "RHBZ#2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/pull/160",
"url": "https://github.com/moxystudio/node-cross-spawn/pull/160"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230",
"url": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230"
}
],
"release_date": "2024-11-08T05:00:04.695000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T10:22:51+00:00",
"details": "It is recommended that existing users of RHTPA 1.2.0 upgrade to 1.2.1. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:11255"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:8c6e51e26ca9a1d4d4fc9e90650103e60360cf0571533c56fbd08dac3007efbe_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "cross-spawn: regular expression denial of service"
}
]
}
wid-sec-w-2025-0043
Vulnerability from csaf_certbund
Published
2025-01-12 23:00
Modified
2025-01-12 23:00
Summary
IBM QRadar SIEM (Log Source Management App): Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
IBM QRadar Security Information and Event Management (SIEM) bietet Unterstützung bei der Erkennung und Priorisierung von Sicherheitsbedrohungen im Unternehmen.
Angriff
Ein entfernter anonymer Angreifer kann mehrere Schwachstellen in IBM QRadar SIEM ausnutzen, um einen Cross-Site-Scripting-Angriff zu starten, beliebigen Code auszuführen, einen Denial-of-Service-Zustand zu erzeugen, Daten zu manipulieren, vertrauliche Informationen offenzulegen und Sicherheitsmaßnahmen zu umgehen.
Betroffene Betriebssysteme
- Sonstiges
- UNIX
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "IBM QRadar Security Information and Event Management (SIEM) bietet Unterst\u00fctzung bei der Erkennung und Priorisierung von Sicherheitsbedrohungen im Unternehmen.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter anonymer Angreifer kann mehrere Schwachstellen in IBM QRadar SIEM ausnutzen, um einen Cross-Site-Scripting-Angriff zu starten, beliebigen Code auszuf\u00fchren, einen Denial-of-Service-Zustand zu erzeugen, Daten zu manipulieren, vertrauliche Informationen offenzulegen und Sicherheitsma\u00dfnahmen zu umgehen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Sonstiges\n- UNIX",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-0043 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0043.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-0043 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0043"
},
{
"category": "external",
"summary": "IBM Security Bulletin vom 2025-01-12",
"url": "https://www.ibm.com/support/pages/node/7180725"
}
],
"source_lang": "en-US",
"title": "IBM QRadar SIEM (Log Source Management App): Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-01-12T23:00:00.000+00:00",
"generator": {
"date": "2025-01-13T09:08:15.486+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.10"
}
},
"id": "WID-SEC-W-2025-0043",
"initial_release_date": "2025-01-12T23:00:00.000+00:00",
"revision_history": [
{
"date": "2025-01-12T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "Log Source Management App \u003c7.0.11",
"product": {
"name": "IBM QRadar SIEM Log Source Management App \u003c7.0.11",
"product_id": "T040117"
}
},
{
"category": "product_version",
"name": "Log Source Management App 7.0.11",
"product": {
"name": "IBM QRadar SIEM Log Source Management App 7.0.11",
"product_id": "T040117-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:qradar_siem:log_source_management_app__7.0.11"
}
}
}
],
"category": "product_name",
"name": "QRadar SIEM"
}
],
"category": "vendor",
"name": "IBM"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-43788",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM Log Source Management App existieren mehrere Cross-Site Scripting Schwachstellen. HTML und Script-Eingaben werden nicht ordnungsgem\u00e4\u00df \u00fcberpr\u00fcft, bevor sie an den Benutzer zur\u00fcckgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstellen beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-43788"
},
{
"cve": "CVE-2024-43796",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM Log Source Management App existieren mehrere Cross-Site Scripting Schwachstellen. HTML und Script-Eingaben werden nicht ordnungsgem\u00e4\u00df \u00fcberpr\u00fcft, bevor sie an den Benutzer zur\u00fcckgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstellen beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-43796"
},
{
"cve": "CVE-2024-43799",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM Log Source Management App existieren mehrere Cross-Site Scripting Schwachstellen. HTML und Script-Eingaben werden nicht ordnungsgem\u00e4\u00df \u00fcberpr\u00fcft, bevor sie an den Benutzer zur\u00fcckgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstellen beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-43799"
},
{
"cve": "CVE-2024-43800",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM Log Source Management App existieren mehrere Cross-Site Scripting Schwachstellen. HTML und Script-Eingaben werden nicht ordnungsgem\u00e4\u00df \u00fcberpr\u00fcft, bevor sie an den Benutzer zur\u00fcckgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstellen beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-43800"
},
{
"cve": "CVE-2024-47068",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM Log Source Management App existieren mehrere Cross-Site Scripting Schwachstellen. HTML und Script-Eingaben werden nicht ordnungsgem\u00e4\u00df \u00fcberpr\u00fcft, bevor sie an den Benutzer zur\u00fcckgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstellen beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-47068"
},
{
"cve": "CVE-2024-47875",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM Log Source Management App existieren mehrere Cross-Site Scripting Schwachstellen. HTML und Script-Eingaben werden nicht ordnungsgem\u00e4\u00df \u00fcberpr\u00fcft, bevor sie an den Benutzer zur\u00fcckgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstellen beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-47875"
},
{
"cve": "CVE-2024-21536",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App. Diese Schwachstellen bestehen in mehreren Modulen und Bibliotheken wie Node.js, dem expressjs body-parser oder nanoid aufgrund von Problemen wie unsachgem\u00e4\u00dfer Eingabebereinigung, Regular Expression Backtracking, Null-Pointer-Dereferenzen, Memory Exhaustion und unsachgem\u00e4\u00dfer Behandlung von nicht ganzzahligen Werten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-21536"
},
{
"cve": "CVE-2024-21538",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App. Diese Schwachstellen bestehen in mehreren Modulen und Bibliotheken wie Node.js, dem expressjs body-parser oder nanoid aufgrund von Problemen wie unsachgem\u00e4\u00dfer Eingabebereinigung, Regular Expression Backtracking, Null-Pointer-Dereferenzen, Memory Exhaustion und unsachgem\u00e4\u00dfer Behandlung von nicht ganzzahligen Werten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-21538"
},
{
"cve": "CVE-2024-33883",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App. Diese Schwachstellen bestehen in mehreren Modulen und Bibliotheken wie Node.js, dem expressjs body-parser oder nanoid aufgrund von Problemen wie unsachgem\u00e4\u00dfer Eingabebereinigung, Regular Expression Backtracking, Null-Pointer-Dereferenzen, Memory Exhaustion und unsachgem\u00e4\u00dfer Behandlung von nicht ganzzahligen Werten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-33883"
},
{
"cve": "CVE-2024-37890",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App. Diese Schwachstellen bestehen in mehreren Modulen und Bibliotheken wie Node.js, dem expressjs body-parser oder nanoid aufgrund von Problemen wie unsachgem\u00e4\u00dfer Eingabebereinigung, Regular Expression Backtracking, Null-Pointer-Dereferenzen, Memory Exhaustion und unsachgem\u00e4\u00dfer Behandlung von nicht ganzzahligen Werten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-37890"
},
{
"cve": "CVE-2024-4067",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App. Diese Schwachstellen bestehen in mehreren Modulen und Bibliotheken wie Node.js, dem expressjs body-parser oder nanoid aufgrund von Problemen wie unsachgem\u00e4\u00dfer Eingabebereinigung, Regular Expression Backtracking, Null-Pointer-Dereferenzen, Memory Exhaustion und unsachgem\u00e4\u00dfer Behandlung von nicht ganzzahligen Werten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-4067"
},
{
"cve": "CVE-2024-4068",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App. Diese Schwachstellen bestehen in mehreren Modulen und Bibliotheken wie Node.js, dem expressjs body-parser oder nanoid aufgrund von Problemen wie unsachgem\u00e4\u00dfer Eingabebereinigung, Regular Expression Backtracking, Null-Pointer-Dereferenzen, Memory Exhaustion und unsachgem\u00e4\u00dfer Behandlung von nicht ganzzahligen Werten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-4068"
},
{
"cve": "CVE-2024-45296",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App. Diese Schwachstellen bestehen in mehreren Modulen und Bibliotheken wie Node.js, dem expressjs body-parser oder nanoid aufgrund von Problemen wie unsachgem\u00e4\u00dfer Eingabebereinigung, Regular Expression Backtracking, Null-Pointer-Dereferenzen, Memory Exhaustion und unsachgem\u00e4\u00dfer Behandlung von nicht ganzzahligen Werten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-45296"
},
{
"cve": "CVE-2024-45590",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App. Diese Schwachstellen bestehen in mehreren Modulen und Bibliotheken wie Node.js, dem expressjs body-parser oder nanoid aufgrund von Problemen wie unsachgem\u00e4\u00dfer Eingabebereinigung, Regular Expression Backtracking, Null-Pointer-Dereferenzen, Memory Exhaustion und unsachgem\u00e4\u00dfer Behandlung von nicht ganzzahligen Werten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-45590"
},
{
"cve": "CVE-2024-48948",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App. Diese Schwachstellen bestehen in mehreren Modulen und Bibliotheken wie Node.js, dem expressjs body-parser oder nanoid aufgrund von Problemen wie unsachgem\u00e4\u00dfer Eingabebereinigung, Regular Expression Backtracking, Null-Pointer-Dereferenzen, Memory Exhaustion und unsachgem\u00e4\u00dfer Behandlung von nicht ganzzahligen Werten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-48948"
},
{
"cve": "CVE-2024-48949",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App. Diese Schwachstellen bestehen in mehreren Modulen und Bibliotheken wie Node.js, dem expressjs body-parser oder nanoid aufgrund von Problemen wie unsachgem\u00e4\u00dfer Eingabebereinigung, Regular Expression Backtracking, Null-Pointer-Dereferenzen, Memory Exhaustion und unsachgem\u00e4\u00dfer Behandlung von nicht ganzzahligen Werten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-48949"
},
{
"cve": "CVE-2024-52798",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App. Diese Schwachstellen bestehen in mehreren Modulen und Bibliotheken wie Node.js, dem expressjs body-parser oder nanoid aufgrund von Problemen wie unsachgem\u00e4\u00dfer Eingabebereinigung, Regular Expression Backtracking, Null-Pointer-Dereferenzen, Memory Exhaustion und unsachgem\u00e4\u00dfer Behandlung von nicht ganzzahligen Werten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-52798"
},
{
"cve": "CVE-2024-55565",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App. Diese Schwachstellen bestehen in mehreren Modulen und Bibliotheken wie Node.js, dem expressjs body-parser oder nanoid aufgrund von Problemen wie unsachgem\u00e4\u00dfer Eingabebereinigung, Regular Expression Backtracking, Null-Pointer-Dereferenzen, Memory Exhaustion und unsachgem\u00e4\u00dfer Behandlung von nicht ganzzahligen Werten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-55565"
},
{
"cve": "CVE-2024-45801",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in IBM QRadar SIEM Log Source Management App. Diese Schwachstelle betrifft DOMPurify aufgrund eines Prototyp-Verschmutzungsfehlers in der Tiefenpr\u00fcfung. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um beliebigen Code auszuf\u00fchren oder einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-45801"
},
{
"cve": "CVE-2024-42459",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App . Diese Schwachstellen betreffen das Node.js Elliptic-Modul aufgrund fehlender \u00dcberpr\u00fcfungen und unsachgem\u00e4\u00dfer Behandlung von BER-codierten Signaturen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen und weitere Angriffe zu starten."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-42459"
},
{
"cve": "CVE-2024-42460",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App . Diese Schwachstellen betreffen das Node.js Elliptic-Modul aufgrund fehlender \u00dcberpr\u00fcfungen und unsachgem\u00e4\u00dfer Behandlung von BER-codierten Signaturen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen und weitere Angriffe zu starten."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-42460"
},
{
"cve": "CVE-2024-42461",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App . Diese Schwachstellen betreffen das Node.js Elliptic-Modul aufgrund fehlender \u00dcberpr\u00fcfungen und unsachgem\u00e4\u00dfer Behandlung von BER-codierten Signaturen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen und weitere Angriffe zu starten."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-42461"
},
{
"cve": "CVE-2024-47764",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in IBM QRadar SIEM Log Source Management App. Diese Schwachstelle betrifft das jshttp-Cookie aufgrund einer unsachgem\u00e4\u00dfen Eingabevalidierung von Cookie-Name, -Pfad und -Dom\u00e4ne. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um Sicherheitsbeschr\u00e4nkungen zu umgehen und andere Felder des Cookies zu \u00e4ndern."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-47764"
}
]
}
WID-SEC-W-2024-3468
Vulnerability from csaf_certbund
Published
2024-11-13 23:00
Modified
2024-11-13 23:00
Summary
Red Hat OpenShift: Schwachstelle ermöglicht Denial of Service
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Red Hat OpenShift ist eine "Platform as a Service" (PaaS) Lösung zur Bereitstellung von Applikationen in der Cloud.
Angriff
Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Red Hat OpenShift ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme
- Linux
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Red Hat OpenShift ist eine \"Platform as a Service\" (PaaS) L\u00f6sung zur Bereitstellung von Applikationen in der Cloud.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Red Hat OpenShift ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-3468 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3468.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-3468 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3468"
},
{
"category": "external",
"summary": "Red Hat Security Advisory vom 2024-11-13",
"url": "https://access.redhat.com/errata/RHSA-2024:9627"
}
],
"source_lang": "en-US",
"title": "Red Hat OpenShift: Schwachstelle erm\u00f6glicht Denial of Service",
"tracking": {
"current_release_date": "2024-11-13T23:00:00.000+00:00",
"generator": {
"date": "2024-11-14T12:15:23.742+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.8"
}
},
"id": "WID-SEC-W-2024-3468",
"initial_release_date": "2024-11-13T23:00:00.000+00:00",
"revision_history": [
{
"date": "2024-11-13T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "Service Mesh Containers \u003c2.6.3",
"product": {
"name": "Red Hat OpenShift Service Mesh Containers \u003c2.6.3",
"product_id": "T039183"
}
},
{
"category": "product_version",
"name": "Service Mesh Containers 2.6.3",
"product": {
"name": "Red Hat OpenShift Service Mesh Containers 2.6.3",
"product_id": "T039183-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:service_mesh_containers__2.6.3"
}
}
}
],
"category": "product_name",
"name": "OpenShift"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in Red Hat OpenShift. Dieser Fehler existiert im http-proxy-middleware-Paket in den Service Mesh Containern wegen eines unkontrollierten Ressourcenverbrauchs. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T039183"
]
},
"release_date": "2024-11-13T23:00:00.000+00:00",
"title": "CVE-2024-21536"
}
]
}
wid-sec-w-2024-3468
Vulnerability from csaf_certbund
Published
2024-11-13 23:00
Modified
2024-11-13 23:00
Summary
Red Hat OpenShift: Schwachstelle ermöglicht Denial of Service
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Red Hat OpenShift ist eine "Platform as a Service" (PaaS) Lösung zur Bereitstellung von Applikationen in der Cloud.
Angriff
Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Red Hat OpenShift ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme
- Linux
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Red Hat OpenShift ist eine \"Platform as a Service\" (PaaS) L\u00f6sung zur Bereitstellung von Applikationen in der Cloud.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Red Hat OpenShift ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-3468 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3468.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-3468 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3468"
},
{
"category": "external",
"summary": "Red Hat Security Advisory vom 2024-11-13",
"url": "https://access.redhat.com/errata/RHSA-2024:9627"
}
],
"source_lang": "en-US",
"title": "Red Hat OpenShift: Schwachstelle erm\u00f6glicht Denial of Service",
"tracking": {
"current_release_date": "2024-11-13T23:00:00.000+00:00",
"generator": {
"date": "2024-11-14T12:15:23.742+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.8"
}
},
"id": "WID-SEC-W-2024-3468",
"initial_release_date": "2024-11-13T23:00:00.000+00:00",
"revision_history": [
{
"date": "2024-11-13T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "Service Mesh Containers \u003c2.6.3",
"product": {
"name": "Red Hat OpenShift Service Mesh Containers \u003c2.6.3",
"product_id": "T039183"
}
},
{
"category": "product_version",
"name": "Service Mesh Containers 2.6.3",
"product": {
"name": "Red Hat OpenShift Service Mesh Containers 2.6.3",
"product_id": "T039183-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:service_mesh_containers__2.6.3"
}
}
}
],
"category": "product_name",
"name": "OpenShift"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in Red Hat OpenShift. Dieser Fehler existiert im http-proxy-middleware-Paket in den Service Mesh Containern wegen eines unkontrollierten Ressourcenverbrauchs. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T039183"
]
},
"release_date": "2024-11-13T23:00:00.000+00:00",
"title": "CVE-2024-21536"
}
]
}
wid-sec-w-2024-3511
Vulnerability from csaf_certbund
Published
2024-11-19 23:00
Modified
2024-11-19 23:00
Summary
IBM App Connect Enterprise: Schwachstelle ermöglicht Denial of Service
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
IBM App Connect Enterprise kombiniert die branchenbewährten Technologien des IBM Integration Bus mit Cloud-nativen Technologien.
Angriff
Ein entfernter, anonymer Angreifer kann eine Schwachstelle in IBM App Connect Enterprise ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme
- Sonstiges
- UNIX
- Windows
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "IBM App Connect Enterprise kombiniert die branchenbew\u00e4hrten Technologien des IBM Integration Bus mit Cloud-nativen Technologien.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in IBM App Connect Enterprise ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Sonstiges\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-3511 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3511.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-3511 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3511"
},
{
"category": "external",
"summary": "IBM Security Bulletin vom 2024-11-19",
"url": "https://www.ibm.com/support/pages/node/7176616"
}
],
"source_lang": "en-US",
"title": "IBM App Connect Enterprise: Schwachstelle erm\u00f6glicht Denial of Service",
"tracking": {
"current_release_date": "2024-11-19T23:00:00.000+00:00",
"generator": {
"date": "2024-11-20T12:42:45.951+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.8"
}
},
"id": "WID-SEC-W-2024-3511",
"initial_release_date": "2024-11-19T23:00:00.000+00:00",
"revision_history": [
{
"date": "2024-11-19T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c12.5.1",
"product": {
"name": "IBM App Connect Enterprise \u003c12.5.1",
"product_id": "T039345"
}
},
{
"category": "product_version",
"name": "12.5.1",
"product": {
"name": "IBM App Connect Enterprise 12.5.1",
"product_id": "T039345-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:app_connect_enterprise:12.5.1"
}
}
},
{
"category": "product_version_range",
"name": "LTS \u003c12.0.5",
"product": {
"name": "IBM App Connect Enterprise LTS \u003c12.0.5",
"product_id": "T039346"
}
},
{
"category": "product_version",
"name": "LTS 12.0.5",
"product": {
"name": "IBM App Connect Enterprise LTS 12.0.5",
"product_id": "T039346-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:app_connect_enterprise:lts__12.0.5"
}
}
},
{
"category": "product_version_range",
"name": "LTS \u003c5.0.22",
"product": {
"name": "IBM App Connect Enterprise LTS \u003c5.0.22",
"product_id": "T039347"
}
},
{
"category": "product_version",
"name": "LTS 5.0.22",
"product": {
"name": "IBM App Connect Enterprise LTS 5.0.22",
"product_id": "T039347-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:app_connect_enterprise:lts__5.0.22"
}
}
}
],
"category": "product_name",
"name": "App Connect Enterprise"
}
],
"category": "vendor",
"name": "IBM"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in IBM App Connect Enterprise. Dieser Fehler betrifft das Node.js-Modul in den \"Dashboard and DesignerAuthoring\" Komponenten aufgrund einer unsachgem\u00e4\u00dfen Ressourcenbehandlung in der http-proxy-middleware. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen, indem er manipulierte Anfragen an bestimmte Pfade sendet."
}
],
"product_status": {
"known_affected": [
"T039347",
"T039346",
"T039345"
]
},
"release_date": "2024-11-19T23:00:00.000+00:00",
"title": "CVE-2024-21536"
}
]
}
WID-SEC-W-2024-3511
Vulnerability from csaf_certbund
Published
2024-11-19 23:00
Modified
2024-11-19 23:00
Summary
IBM App Connect Enterprise: Schwachstelle ermöglicht Denial of Service
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
IBM App Connect Enterprise kombiniert die branchenbewährten Technologien des IBM Integration Bus mit Cloud-nativen Technologien.
Angriff
Ein entfernter, anonymer Angreifer kann eine Schwachstelle in IBM App Connect Enterprise ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme
- Sonstiges
- UNIX
- Windows
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "IBM App Connect Enterprise kombiniert die branchenbew\u00e4hrten Technologien des IBM Integration Bus mit Cloud-nativen Technologien.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in IBM App Connect Enterprise ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Sonstiges\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-3511 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3511.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-3511 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3511"
},
{
"category": "external",
"summary": "IBM Security Bulletin vom 2024-11-19",
"url": "https://www.ibm.com/support/pages/node/7176616"
}
],
"source_lang": "en-US",
"title": "IBM App Connect Enterprise: Schwachstelle erm\u00f6glicht Denial of Service",
"tracking": {
"current_release_date": "2024-11-19T23:00:00.000+00:00",
"generator": {
"date": "2024-11-20T12:42:45.951+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.8"
}
},
"id": "WID-SEC-W-2024-3511",
"initial_release_date": "2024-11-19T23:00:00.000+00:00",
"revision_history": [
{
"date": "2024-11-19T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c12.5.1",
"product": {
"name": "IBM App Connect Enterprise \u003c12.5.1",
"product_id": "T039345"
}
},
{
"category": "product_version",
"name": "12.5.1",
"product": {
"name": "IBM App Connect Enterprise 12.5.1",
"product_id": "T039345-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:app_connect_enterprise:12.5.1"
}
}
},
{
"category": "product_version_range",
"name": "LTS \u003c12.0.5",
"product": {
"name": "IBM App Connect Enterprise LTS \u003c12.0.5",
"product_id": "T039346"
}
},
{
"category": "product_version",
"name": "LTS 12.0.5",
"product": {
"name": "IBM App Connect Enterprise LTS 12.0.5",
"product_id": "T039346-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:app_connect_enterprise:lts__12.0.5"
}
}
},
{
"category": "product_version_range",
"name": "LTS \u003c5.0.22",
"product": {
"name": "IBM App Connect Enterprise LTS \u003c5.0.22",
"product_id": "T039347"
}
},
{
"category": "product_version",
"name": "LTS 5.0.22",
"product": {
"name": "IBM App Connect Enterprise LTS 5.0.22",
"product_id": "T039347-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:app_connect_enterprise:lts__5.0.22"
}
}
}
],
"category": "product_name",
"name": "App Connect Enterprise"
}
],
"category": "vendor",
"name": "IBM"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in IBM App Connect Enterprise. Dieser Fehler betrifft das Node.js-Modul in den \"Dashboard and DesignerAuthoring\" Komponenten aufgrund einer unsachgem\u00e4\u00dfen Ressourcenbehandlung in der http-proxy-middleware. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen, indem er manipulierte Anfragen an bestimmte Pfade sendet."
}
],
"product_status": {
"known_affected": [
"T039347",
"T039346",
"T039345"
]
},
"release_date": "2024-11-19T23:00:00.000+00:00",
"title": "CVE-2024-21536"
}
]
}
gsd-2024-21536
Vulnerability from gsd
Modified
2023-12-23 06:02
Details
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Aliases
{
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2024-21536"
],
"id": "GSD-2024-21536",
"modified": "2023-12-23T06:02:09.421580Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2024-21536",
"STATE": "RESERVED"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
]
}
}
}
}
ghsa-c7qv-q95q-8v27
Vulnerability from github
Published
2024-10-19 06:30
Modified
2024-10-22 19:47
Severity ?
VLAI Severity ?
Summary
Denial of service in http-proxy-middleware
Details
Versions of the package http-proxy-middleware before 2.0.7, from 3.0.0 and before 3.0.3 are vulnerable to Denial of Service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. An attacker could kill the Node.js process and crash the server by making requests to certain paths.
{
"affected": [
{
"package": {
"ecosystem": "npm",
"name": "http-proxy-middleware"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.0.7"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "npm",
"name": "http-proxy-middleware"
},
"ranges": [
{
"events": [
{
"introduced": "3.0.0"
},
{
"fixed": "3.0.3"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2024-21536"
],
"database_specific": {
"cwe_ids": [
"CWE-400"
],
"github_reviewed": true,
"github_reviewed_at": "2024-10-22T19:47:41Z",
"nvd_published_at": "2024-10-19T05:15:13Z",
"severity": "HIGH"
},
"details": "Versions of the package http-proxy-middleware before 2.0.7, from 3.0.0 and before 3.0.3 are vulnerable to Denial of Service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. An attacker could kill the Node.js process and crash the server by making requests to certain paths.",
"id": "GHSA-c7qv-q95q-8v27",
"modified": "2024-10-22T19:47:41Z",
"published": "2024-10-19T06:30:30Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"type": "WEB",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"type": "WEB",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"type": "WEB",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"type": "PACKAGE",
"url": "https://github.com/chimurai/http-proxy-middleware"
},
{
"type": "WEB",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
],
"summary": "Denial of service in http-proxy-middleware"
}
fkie_cve-2024-21536
Vulnerability from fkie_nvd
Published
2024-10-19 05:15
Modified
2024-11-01 18:03
Severity ?
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
Versions of the package http-proxy-middleware before 2.0.7, from 3.0.0 and before 3.0.3 are vulnerable to Denial of Service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. An attacker could kill the Node.js process and crash the server by making requests to certain paths.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| chimurai | http-proxy-middleware | * | |
| chimurai | http-proxy-middleware | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:chimurai:http-proxy-middleware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "A1C31D2C-0CB7-4D28-8658-42632A65F7F3",
"versionEndExcluding": "2.0.7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:chimurai:http-proxy-middleware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "A89EB4F5-1978-4172-A52D-8504F87E110E",
"versionEndExcluding": "3.0.3",
"versionStartIncluding": "3.0.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Versions of the package http-proxy-middleware before 2.0.7, from 3.0.0 and before 3.0.3 are vulnerable to Denial of Service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. An attacker could kill the Node.js process and crash the server by making requests to certain paths."
},
{
"lang": "es",
"value": "Las versiones del paquete http-proxy-middleware anteriores a la 2.0.7, a la 3.0.0 y a la 3.0.3 es vulnerable a un ataque de denegaci\u00f3n de servicio (DoS) debido a un error UnhandledPromiseRejection generado por micromatch. Un atacante podr\u00eda matar el proceso Node.js y bloquear el servidor al realizar solicitudes a determinadas rutas."
}
],
"id": "CVE-2024-21536",
"lastModified": "2024-11-01T18:03:15.897",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "report@snyk.io",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2024-10-19T05:15:13.097",
"references": [
{
"source": "report@snyk.io",
"tags": [
"Exploit",
"Third Party Advisory"
],
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"source": "report@snyk.io",
"tags": [
"Patch"
],
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"source": "report@snyk.io",
"tags": [
"Patch"
],
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"source": "report@snyk.io",
"tags": [
"Third Party Advisory"
],
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"sourceIdentifier": "report@snyk.io",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-400"
}
],
"source": "report@snyk.io",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…