Action not permitted
Modal body text goes here.
cve-2024-26144
Vulnerability from cvelistv5
Published
2024-02-27 15:44
Modified
2024-08-09 14:45
Severity ?
EPSS score ?
Summary
Possible Sensitive Session Information Leak in Active Storage
References
Impacted products
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-01T23:59:32.578Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "https://github.com/rails/rails/security/advisories/GHSA-8h22-8cf7-hq6g",
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://github.com/rails/rails/security/advisories/GHSA-8h22-8cf7-hq6g"
},
{
"name": "https://github.com/rails/rails/commit/723f54566023e91060a67b03353e7c03e7436433",
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/rails/rails/commit/723f54566023e91060a67b03353e7c03e7436433"
},
{
"name": "https://github.com/rails/rails/commit/78fe149509fac5b05e54187aaaef216fbb5fd0d3",
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/rails/rails/commit/78fe149509fac5b05e54187aaaef216fbb5fd0d3"
},
{
"name": "https://discuss.rubyonrails.org/t/possible-sensitive-session-information-leak-in-active-storage/84945",
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://discuss.rubyonrails.org/t/possible-sensitive-session-information-leak-in-active-storage/84945"
},
{
"name": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activestorage/CVE-2024-26144.yml",
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activestorage/CVE-2024-26144.yml"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20240510-0013/"
}
],
"title": "CVE Program Container"
},
{
"affected": [
{
"cpes": [
"cpe:2.3:a:rails:rails:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "rails",
"vendor": "rails",
"versions": [
{
"lessThan": "7.1.0",
"status": "affected",
"version": "5.2.0",
"versionType": "custom"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-26144",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-08-09T14:01:13.600938Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-08-09T14:45:52.412Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "rails",
"vendor": "rails",
"versions": [
{
"status": "affected",
"version": "\u003e= 5.2.0, \u003c 6.1.7.7"
},
{
"status": "affected",
"version": "\u003e= 7.0.0, \u003c 7.0.8.1"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Rails is a web-application framework. Starting with version 5.2.0, there is a possible sensitive session information leak in Active Storage. By default, Active Storage sends a Set-Cookie header along with the user\u0027s session cookie when serving blobs. It also sets Cache-Control to public. Certain proxies may cache the Set-Cookie, leading to an information leak. The vulnerability is fixed in 7.0.8.1 and 6.1.7.7."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-200",
"description": "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-02-27T15:44:04.166Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/rails/rails/security/advisories/GHSA-8h22-8cf7-hq6g",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/rails/rails/security/advisories/GHSA-8h22-8cf7-hq6g"
},
{
"name": "https://github.com/rails/rails/commit/723f54566023e91060a67b03353e7c03e7436433",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/rails/rails/commit/723f54566023e91060a67b03353e7c03e7436433"
},
{
"name": "https://github.com/rails/rails/commit/78fe149509fac5b05e54187aaaef216fbb5fd0d3",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/rails/rails/commit/78fe149509fac5b05e54187aaaef216fbb5fd0d3"
},
{
"name": "https://discuss.rubyonrails.org/t/possible-sensitive-session-information-leak-in-active-storage/84945",
"tags": [
"x_refsource_MISC"
],
"url": "https://discuss.rubyonrails.org/t/possible-sensitive-session-information-leak-in-active-storage/84945"
},
{
"name": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activestorage/CVE-2024-26144.yml",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activestorage/CVE-2024-26144.yml"
},
{
"url": "https://security.netapp.com/advisory/ntap-20240510-0013/"
}
],
"source": {
"advisory": "GHSA-8h22-8cf7-hq6g",
"discovery": "UNKNOWN"
},
"title": "Possible Sensitive Session Information Leak in Active Storage"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2024-26144",
"datePublished": "2024-02-27T15:44:04.166Z",
"dateReserved": "2024-02-14T17:40:03.688Z",
"dateUpdated": "2024-08-09T14:45:52.412Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2024-26144\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2024-02-27T16:15:46.970\",\"lastModified\":\"2024-11-21T09:02:01.407\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Rails is a web-application framework. Starting with version 5.2.0, there is a possible sensitive session information leak in Active Storage. By default, Active Storage sends a Set-Cookie header along with the user\u0027s session cookie when serving blobs. It also sets Cache-Control to public. Certain proxies may cache the Set-Cookie, leading to an information leak. The vulnerability is fixed in 7.0.8.1 and 6.1.7.7.\"},{\"lang\":\"es\",\"value\":\"Rails es un framework de aplicaci\u00f3n web. A partir de la versi\u00f3n 5.2.0, existe una posible fuga de informaci\u00f3n confidencial de la sesi\u00f3n en Active Storage. De forma predeterminada, Active Storage env\u00eda un encabezado Set-Cookie junto con la cookie de sesi\u00f3n del usuario cuando sirve blobs. Tambi\u00e9n configura Cache-Control como p\u00fablico. Ciertos servidores proxy pueden almacenar en cach\u00e9 la Set-Cookie, lo que provoca una fuga de informaci\u00f3n. La vulnerabilidad se solucion\u00f3 en 7.0.8.1 y 6.1.7.7.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N\",\"baseScore\":5.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":1.4}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-200\"}]}],\"references\":[{\"url\":\"https://discuss.rubyonrails.org/t/possible-sensitive-session-information-leak-in-active-storage/84945\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/rails/rails/commit/723f54566023e91060a67b03353e7c03e7436433\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/rails/rails/commit/78fe149509fac5b05e54187aaaef216fbb5fd0d3\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/rails/rails/security/advisories/GHSA-8h22-8cf7-hq6g\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activestorage/CVE-2024-26144.yml\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20240510-0013/\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://discuss.rubyonrails.org/t/possible-sensitive-session-information-leak-in-active-storage/84945\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/rails/rails/commit/723f54566023e91060a67b03353e7c03e7436433\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/rails/rails/commit/78fe149509fac5b05e54187aaaef216fbb5fd0d3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/rails/rails/security/advisories/GHSA-8h22-8cf7-hq6g\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activestorage/CVE-2024-26144.yml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20240510-0013/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
wid-sec-w-2024-0462
Vulnerability from csaf_certbund
Published
2024-02-21 23:00
Modified
2024-12-04 23:00
Summary
Ruby on Rails: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Ruby on Rails ist ein in der Programmiersprache Ruby geschriebenes und quelloffenes Web Application Framework.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Ruby on Rails ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen, vertrauliche Informationen offenzulegen oder einen Cross-Site-Scripting-Angriff (XSS) durchzuführen.
Betroffene Betriebssysteme
- Linux
- MacOS X
- UNIX
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Ruby on Rails ist ein in der Programmiersprache Ruby geschriebenes und quelloffenes Web Application Framework.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Ruby on Rails ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen, vertrauliche Informationen offenzulegen oder einen Cross-Site-Scripting-Angriff (XSS) durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- MacOS X\n- UNIX",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-0462 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0462.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-0462 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0462"
},
{
"category": "external",
"summary": "Ruby Release Notes vom 2024-02-21",
"url": "https://rubyonrails.org/2024/2/21/Rails-Versions-6-1-7-7-7-0-8-1-and-7-1-3-2-have-been-released"
},
{
"category": "external",
"summary": "Ruby Security Announcements vom 2024-02-21",
"url": "https://discuss.rubyonrails.org/t/possible-xss-vulnerability-in-action-controller/84947"
},
{
"category": "external",
"summary": "Ruby Security Announcements vom 2024-02-21",
"url": "https://discuss.rubyonrails.org/t/possible-redos-vulnerability-in-accept-header-parsing-in-action-dispatch/84946"
},
{
"category": "external",
"summary": "Ruby Security Announcements vom 2024-02-21",
"url": "https://discuss.rubyonrails.org/t/possible-sensitive-session-information-leak-in-active-storage/84945"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7144239 vom 2024-03-19",
"url": "https://www.ibm.com/support/pages/node/7144239"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:10806 vom 2024-12-04",
"url": "https://access.redhat.com/errata/RHSA-2024:10806"
}
],
"source_lang": "en-US",
"title": "Ruby on Rails: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2024-12-04T23:00:00.000+00:00",
"generator": {
"date": "2024-12-05T09:06:07.463+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.10"
}
},
"id": "WID-SEC-W-2024-0462",
"initial_release_date": "2024-02-21T23:00:00.000+00:00",
"revision_history": [
{
"date": "2024-02-21T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-03-19T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-12-04T23:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Red Hat aufgenommen"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "9.2",
"product": {
"name": "IBM License Metric Tool 9.2",
"product_id": "T027649",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:license_metric_tool:9.2"
}
}
}
],
"category": "product_name",
"name": "License Metric Tool"
}
],
"category": "vendor",
"name": "IBM"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.1.7.7",
"product": {
"name": "Open Source Ruby on Rails \u003c6.1.7.7",
"product_id": "T033062"
}
},
{
"category": "product_version",
"name": "6.1.7.7",
"product": {
"name": "Open Source Ruby on Rails 6.1.7.7",
"product_id": "T033062-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:rubyonrails:ruby_on_rails:6.1.7.7"
}
}
},
{
"category": "product_version_range",
"name": "\u003c7.0.8.1",
"product": {
"name": "Open Source Ruby on Rails \u003c7.0.8.1",
"product_id": "T033063"
}
},
{
"category": "product_version",
"name": "7.0.8.1",
"product": {
"name": "Open Source Ruby on Rails 7.0.8.1",
"product_id": "T033063-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:rubyonrails:ruby_on_rails:7.0.8.1"
}
}
},
{
"category": "product_version_range",
"name": "\u003c7.1.3.2",
"product": {
"name": "Open Source Ruby on Rails \u003c7.1.3.2",
"product_id": "T033064"
}
},
{
"category": "product_version",
"name": "7.1.3.2",
"product": {
"name": "Open Source Ruby on Rails 7.1.3.2",
"product_id": "T033064-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:rubyonrails:ruby_on_rails:7.1.3.2"
}
}
}
],
"category": "product_name",
"name": "Ruby on Rails"
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-26142",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in Ruby on Rails. Dieser Fehler besteht w\u00e4hrend des Parsens des Accept-Headers in Action Dispatch. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu verursachen."
}
],
"product_status": {
"known_affected": [
"T027649",
"67646",
"T033064",
"T033062",
"T033063"
]
},
"release_date": "2024-02-21T23:00:00.000+00:00",
"title": "CVE-2024-26142"
},
{
"cve": "CVE-2024-26143",
"notes": [
{
"category": "description",
"text": "In Ruby on Rails existiert eine Cross-Site Scripting Schwachstelle. HTML und Script-Eingaben werden in Action Controller nicht ordnungsgem\u00e4\u00df \u00fcberpr\u00fcft, bevor sie an den Benutzer zur\u00fcckgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstelle beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausf\u00fchren. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T027649",
"67646",
"T033064",
"T033062",
"T033063"
]
},
"release_date": "2024-02-21T23:00:00.000+00:00",
"title": "CVE-2024-26143"
},
{
"cve": "CVE-2024-26144",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in Ruby on Rails. Dieser Fehler besteht in der Komponente Active Storage aufgrund einer unsachgem\u00e4\u00dfen Sitzungsverwaltung, die es erlaubt, die Sitzung eines Benutzers zu teilen. Ein entfernter, authentifizierter Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen."
}
],
"product_status": {
"known_affected": [
"T027649",
"67646",
"T033062",
"T033063"
]
},
"release_date": "2024-02-21T23:00:00.000+00:00",
"title": "CVE-2024-26144"
}
]
}
ghsa-8h22-8cf7-hq6g
Vulnerability from github
Published
2024-02-27 21:41
Modified
2024-06-10 18:30
Severity ?
Summary
Rails has possible Sensitive Session Information Leak in Active Storage
Details
Possible Sensitive Session Information Leak in Active Storage
There is a possible sensitive session information leak in Active Storage. By
default, Active Storage sends a Set-Cookie header along with the user's
session cookie when serving blobs. It also sets Cache-Control to public.
Certain proxies may cache the Set-Cookie, leading to an information leak.
This vulnerability has been assigned the CVE identifier CVE-2024-26144.
Versions Affected: >= 5.2.0, < 7.1.0 Not affected: < 5.2.0, > 7.1.0 Fixed Versions: 7.0.8.1, 6.1.7.7
Impact
A proxy which chooses to caches this request can cause users to share sessions. This may include a user receiving an attacker's session or vice versa.
This was patched in 7.1.0 but not previously identified as a security vulnerability.
All users running an affected release should either upgrade or use one of the workarounds immediately.
Releases
The fixed releases are available at the normal locations.
Workarounds
Upgrade to Rails 7.1.X, or configure caching proxies not to cache the Set-Cookie headers.
Credits
Thanks to tyage for reporting this!
{
"affected": [
{
"package": {
"ecosystem": "RubyGems",
"name": "activestorage"
},
"ranges": [
{
"events": [
{
"introduced": "5.2.0"
},
{
"fixed": "6.1.7.7"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "RubyGems",
"name": "activestorage"
},
"ranges": [
{
"events": [
{
"introduced": "7.0.0"
},
{
"fixed": "7.0.8.1"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2024-26144"
],
"database_specific": {
"cwe_ids": [
"CWE-200"
],
"github_reviewed": true,
"github_reviewed_at": "2024-02-27T21:41:16Z",
"nvd_published_at": "2024-02-27T16:15:46Z",
"severity": "MODERATE"
},
"details": "# Possible Sensitive Session Information Leak in Active Storage\n\nThere is a possible sensitive session information leak in Active Storage. By\ndefault, Active Storage sends a `Set-Cookie` header along with the user\u0027s\nsession cookie when serving blobs. It also sets `Cache-Control` to public.\nCertain proxies may cache the Set-Cookie, leading to an information leak.\n\nThis vulnerability has been assigned the CVE identifier CVE-2024-26144.\n\nVersions Affected: \u003e= 5.2.0, \u003c 7.1.0\nNot affected: \u003c 5.2.0, \u003e 7.1.0\nFixed Versions: 7.0.8.1, 6.1.7.7\n\nImpact\n------\nA proxy which chooses to caches this request can cause users to share\nsessions. This may include a user receiving an attacker\u0027s session or vice\nversa.\n\nThis was patched in 7.1.0 but not previously identified as a security\nvulnerability.\n\nAll users running an affected release should either upgrade or use one of the\nworkarounds immediately.\n\nReleases\n--------\nThe fixed releases are available at the normal locations.\n\nWorkarounds\n-----------\nUpgrade to Rails 7.1.X, or configure caching proxies not to cache the\nSet-Cookie headers.\n\nCredits\n-------\n\nThanks to [tyage](https://hackerone.com/tyage) for reporting this!\n",
"id": "GHSA-8h22-8cf7-hq6g",
"modified": "2024-06-10T18:30:52Z",
"published": "2024-02-27T21:41:16Z",
"references": [
{
"type": "WEB",
"url": "https://github.com/rails/rails/security/advisories/GHSA-8h22-8cf7-hq6g"
},
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26144"
},
{
"type": "WEB",
"url": "https://github.com/rails/rails/commit/723f54566023e91060a67b03353e7c03e7436433"
},
{
"type": "WEB",
"url": "https://github.com/rails/rails/commit/78fe149509fac5b05e54187aaaef216fbb5fd0d3"
},
{
"type": "WEB",
"url": "https://discuss.rubyonrails.org/t/possible-sensitive-session-information-leak-in-active-storage/84945"
},
{
"type": "PACKAGE",
"url": "https://github.com/rails/rails"
},
{
"type": "WEB",
"url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2024-26144.yml"
},
{
"type": "WEB",
"url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activestorage/CVE-2024-26144.yml"
},
{
"type": "WEB",
"url": "https://security.netapp.com/advisory/ntap-20240510-0013"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
}
],
"summary": "Rails has possible Sensitive Session Information Leak in Active Storage"
}
rhsa-2024_10806
Vulnerability from csaf_redhat
Published
2024-12-04 20:43
Modified
2024-12-05 05:10
Summary
Red Hat Security Advisory: Satellite 6.15.5 Async Update
Notes
Topic
An update is now available for Red Hat Satellite 6.15 for RHEL 8.
Red Hat Product Security has rated this update as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available for each vulnerability from
the CVE link(s) in the References section.
Details
Red Hat Satellite is a system management solution that allows organizations
to configure and maintain their systems without the necessity to provide
public Internet access to their servers or other client systems. It
performs provisioning and configuration management of predefined standard
operating environments.
Security Fix(es):
* rubygem-activestorage: Possible Sensitive Session Information Leak in Active Storage (CVE-2024-26144)
* rubygem-rack: Possible Denial of Service Vulnerability in Rack Header Parsing (CVE-2024-26146)
* rubygem-rack: Possible DoS Vulnerability with Range Header in Rack (CVE-2024-26141)
* rubygem-rack: Denial of Service Vulnerability in Rack Content-Type Parsing (CVE-2024-25126)
* python-ecdsa: vulnerable to the Minerva attack (CVE-2024-23342)
Users of Red Hat Satellite are advised to upgrade to these updated
packages, which fix these bugs.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update is now available for Red Hat Satellite 6.15 for RHEL 8.\n\nRed Hat Product Security has rated this update as having a security impact\nof Moderate. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available for each vulnerability from\nthe CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Satellite is a system management solution that allows organizations\nto configure and maintain their systems without the necessity to provide\npublic Internet access to their servers or other client systems. It\nperforms provisioning and configuration management of predefined standard\noperating environments.\n\nSecurity Fix(es):\n\n* rubygem-activestorage: Possible Sensitive Session Information Leak in Active Storage (CVE-2024-26144)\n* rubygem-rack: Possible Denial of Service Vulnerability in Rack Header Parsing (CVE-2024-26146)\n* rubygem-rack: Possible DoS Vulnerability with Range Header in Rack (CVE-2024-26141)\n* rubygem-rack: Denial of Service Vulnerability in Rack Content-Type Parsing (CVE-2024-25126)\n* python-ecdsa: vulnerable to the Minerva attack (CVE-2024-23342)\n\nUsers of Red Hat Satellite are advised to upgrade to these updated\npackages, which fix these bugs.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10806",
"url": "https://access.redhat.com/errata/RHSA-2024:10806"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_satellite/6.15/html/updating_red_hat_satellite/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_satellite/6.15/html/updating_red_hat_satellite/index"
},
{
"category": "external",
"summary": "2259780",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259780"
},
{
"category": "external",
"summary": "2265593",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265593"
},
{
"category": "external",
"summary": "2265594",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265594"
},
{
"category": "external",
"summary": "2265595",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265595"
},
{
"category": "external",
"summary": "2266063",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266063"
},
{
"category": "external",
"summary": "SAT-28466",
"url": "https://issues.redhat.com/browse/SAT-28466"
},
{
"category": "external",
"summary": "SAT-28665",
"url": "https://issues.redhat.com/browse/SAT-28665"
},
{
"category": "external",
"summary": "SAT-28689",
"url": "https://issues.redhat.com/browse/SAT-28689"
},
{
"category": "external",
"summary": "SAT-28690",
"url": "https://issues.redhat.com/browse/SAT-28690"
},
{
"category": "external",
"summary": "SAT-28691",
"url": "https://issues.redhat.com/browse/SAT-28691"
},
{
"category": "external",
"summary": "SAT-28693",
"url": "https://issues.redhat.com/browse/SAT-28693"
},
{
"category": "external",
"summary": "SAT-28695",
"url": "https://issues.redhat.com/browse/SAT-28695"
},
{
"category": "external",
"summary": "SAT-28696",
"url": "https://issues.redhat.com/browse/SAT-28696"
},
{
"category": "external",
"summary": "SAT-28697",
"url": "https://issues.redhat.com/browse/SAT-28697"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10806.json"
}
],
"title": "Red Hat Security Advisory: Satellite 6.15.5 Async Update",
"tracking": {
"current_release_date": "2024-12-05T05:10:30+00:00",
"generator": {
"date": "2024-12-05T05:10:30+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.2"
}
},
"id": "RHSA-2024:10806",
"initial_release_date": "2024-12-04T20:43:54+00:00",
"revision_history": [
{
"date": "2024-12-04T20:43:54+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-12-04T20:43:54+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-12-05T05:10:30+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Satellite 6.15 for RHEL 8",
"product": {
"name": "Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite:6.15::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat Satellite 6.15 for RHEL 8",
"product": {
"name": "Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite_capsule:6.15::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat Satellite 6.15 for RHEL 8",
"product": {
"name": "Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite_utils:6.15::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Satellite 6"
},
{
"branches": [
{
"category": "product_version",
"name": "foreman-installer-1:3.9.3.7-1.el8sat.src",
"product": {
"name": "foreman-installer-1:3.9.3.7-1.el8sat.src",
"product_id": "foreman-installer-1:3.9.3.7-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-installer@3.9.3.7-1.el8sat?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"product": {
"name": "pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"product_id": "pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pulpcore-obsolete-packages@1.0-10.el8pc?arch=src"
}
}
},
{
"category": "product_version",
"name": "puppetserver-0:7.17.2-1.el8sat.src",
"product": {
"name": "puppetserver-0:7.17.2-1.el8sat.src",
"product_id": "puppetserver-0:7.17.2-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/puppetserver@7.17.2-1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "python-pulp-container-0:2.16.9-2.el8pc.src",
"product": {
"name": "python-pulp-container-0:2.16.9-2.el8pc.src",
"product_id": "python-pulp-container-0:2.16.9-2.el8pc.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-pulp-container@2.16.9-2.el8pc?arch=src"
}
}
},
{
"category": "product_version",
"name": "rubygem-actioncable-0:6.1.7.7-1.el8sat.src",
"product": {
"name": "rubygem-actioncable-0:6.1.7.7-1.el8sat.src",
"product_id": "rubygem-actioncable-0:6.1.7.7-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-actioncable@6.1.7.7-1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "rubygem-actionmailbox-0:6.1.7.7-1.el8sat.src",
"product": {
"name": "rubygem-actionmailbox-0:6.1.7.7-1.el8sat.src",
"product_id": "rubygem-actionmailbox-0:6.1.7.7-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-actionmailbox@6.1.7.7-1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "rubygem-actionmailer-0:6.1.7.7-1.el8sat.src",
"product": {
"name": "rubygem-actionmailer-0:6.1.7.7-1.el8sat.src",
"product_id": "rubygem-actionmailer-0:6.1.7.7-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-actionmailer@6.1.7.7-1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "rubygem-actionpack-0:6.1.7.7-1.el8sat.src",
"product": {
"name": "rubygem-actionpack-0:6.1.7.7-1.el8sat.src",
"product_id": "rubygem-actionpack-0:6.1.7.7-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-actionpack@6.1.7.7-1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "rubygem-actiontext-0:6.1.7.7-1.el8sat.src",
"product": {
"name": "rubygem-actiontext-0:6.1.7.7-1.el8sat.src",
"product_id": "rubygem-actiontext-0:6.1.7.7-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-actiontext@6.1.7.7-1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "rubygem-actionview-0:6.1.7.7-1.el8sat.src",
"product": {
"name": "rubygem-actionview-0:6.1.7.7-1.el8sat.src",
"product_id": "rubygem-actionview-0:6.1.7.7-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-actionview@6.1.7.7-1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "rubygem-activejob-0:6.1.7.7-1.el8sat.src",
"product": {
"name": "rubygem-activejob-0:6.1.7.7-1.el8sat.src",
"product_id": "rubygem-activejob-0:6.1.7.7-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-activejob@6.1.7.7-1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "rubygem-activemodel-0:6.1.7.7-1.el8sat.src",
"product": {
"name": "rubygem-activemodel-0:6.1.7.7-1.el8sat.src",
"product_id": "rubygem-activemodel-0:6.1.7.7-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-activemodel@6.1.7.7-1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "rubygem-activerecord-0:6.1.7.7-1.el8sat.src",
"product": {
"name": "rubygem-activerecord-0:6.1.7.7-1.el8sat.src",
"product_id": "rubygem-activerecord-0:6.1.7.7-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-activerecord@6.1.7.7-1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "rubygem-activestorage-0:6.1.7.7-1.el8sat.src",
"product": {
"name": "rubygem-activestorage-0:6.1.7.7-1.el8sat.src",
"product_id": "rubygem-activestorage-0:6.1.7.7-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-activestorage@6.1.7.7-1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"product": {
"name": "rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"product_id": "rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-activesupport@6.1.7.7-1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.src",
"product": {
"name": "rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.src",
"product_id": "rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-foreman_rh_cloud@9.0.59-1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "rubygem-rack-0:2.2.8.1-1.el8sat.src",
"product": {
"name": "rubygem-rack-0:2.2.8.1-1.el8sat.src",
"product_id": "rubygem-rack-0:2.2.8.1-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-rack@2.2.8.1-1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "rubygem-rails-0:6.1.7.7-1.el8sat.src",
"product": {
"name": "rubygem-rails-0:6.1.7.7-1.el8sat.src",
"product_id": "rubygem-rails-0:6.1.7.7-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-rails@6.1.7.7-1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "rubygem-railties-0:6.1.7.7-2.el8sat.src",
"product": {
"name": "rubygem-railties-0:6.1.7.7-2.el8sat.src",
"product_id": "rubygem-railties-0:6.1.7.7-2.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-railties@6.1.7.7-2.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"product": {
"name": "rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"product_id": "rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-smart_proxy_ansible@3.5.6-0.1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "satellite-0:6.15.5-1.el8sat.src",
"product": {
"name": "satellite-0:6.15.5-1.el8sat.src",
"product_id": "satellite-0:6.15.5-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite@6.15.5-1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "foreman-0:3.9.1.12-1.el8sat.src",
"product": {
"name": "foreman-0:3.9.1.12-1.el8sat.src",
"product_id": "foreman-0:3.9.1.12-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman@3.9.1.12-1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "rubygem-katello-0:4.11.0.19-1.el8sat.src",
"product": {
"name": "rubygem-katello-0:4.11.0.19-1.el8sat.src",
"product_id": "rubygem-katello-0:4.11.0.19-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-katello@4.11.0.19-1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"product": {
"name": "foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"product_id": "foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-fapolicyd@1.0.1-3.el8sat?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"product": {
"name": "foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"product_id": "foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-installer@3.9.3.7-1.el8sat?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"product": {
"name": "foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"product_id": "foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-installer-katello@3.9.3.7-1.el8sat?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"product": {
"name": "pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"product_id": "pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/pulpcore-obsolete-packages@1.0-10.el8pc?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "puppetserver-0:7.17.2-1.el8sat.noarch",
"product": {
"name": "puppetserver-0:7.17.2-1.el8sat.noarch",
"product_id": "puppetserver-0:7.17.2-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/puppetserver@7.17.2-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"product": {
"name": "python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"product_id": "python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-pulp-container@2.16.9-2.el8pc?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rubygem-actioncable-0:6.1.7.7-1.el8sat.noarch",
"product": {
"name": "rubygem-actioncable-0:6.1.7.7-1.el8sat.noarch",
"product_id": "rubygem-actioncable-0:6.1.7.7-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-actioncable@6.1.7.7-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rubygem-actionmailbox-0:6.1.7.7-1.el8sat.noarch",
"product": {
"name": "rubygem-actionmailbox-0:6.1.7.7-1.el8sat.noarch",
"product_id": "rubygem-actionmailbox-0:6.1.7.7-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-actionmailbox@6.1.7.7-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rubygem-actionmailer-0:6.1.7.7-1.el8sat.noarch",
"product": {
"name": "rubygem-actionmailer-0:6.1.7.7-1.el8sat.noarch",
"product_id": "rubygem-actionmailer-0:6.1.7.7-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-actionmailer@6.1.7.7-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rubygem-actionpack-0:6.1.7.7-1.el8sat.noarch",
"product": {
"name": "rubygem-actionpack-0:6.1.7.7-1.el8sat.noarch",
"product_id": "rubygem-actionpack-0:6.1.7.7-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-actionpack@6.1.7.7-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rubygem-actiontext-0:6.1.7.7-1.el8sat.noarch",
"product": {
"name": "rubygem-actiontext-0:6.1.7.7-1.el8sat.noarch",
"product_id": "rubygem-actiontext-0:6.1.7.7-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-actiontext@6.1.7.7-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rubygem-actionview-0:6.1.7.7-1.el8sat.noarch",
"product": {
"name": "rubygem-actionview-0:6.1.7.7-1.el8sat.noarch",
"product_id": "rubygem-actionview-0:6.1.7.7-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-actionview@6.1.7.7-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rubygem-activejob-0:6.1.7.7-1.el8sat.noarch",
"product": {
"name": "rubygem-activejob-0:6.1.7.7-1.el8sat.noarch",
"product_id": "rubygem-activejob-0:6.1.7.7-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-activejob@6.1.7.7-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rubygem-activemodel-0:6.1.7.7-1.el8sat.noarch",
"product": {
"name": "rubygem-activemodel-0:6.1.7.7-1.el8sat.noarch",
"product_id": "rubygem-activemodel-0:6.1.7.7-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-activemodel@6.1.7.7-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rubygem-activerecord-0:6.1.7.7-1.el8sat.noarch",
"product": {
"name": "rubygem-activerecord-0:6.1.7.7-1.el8sat.noarch",
"product_id": "rubygem-activerecord-0:6.1.7.7-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-activerecord@6.1.7.7-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rubygem-activestorage-0:6.1.7.7-1.el8sat.noarch",
"product": {
"name": "rubygem-activestorage-0:6.1.7.7-1.el8sat.noarch",
"product_id": "rubygem-activestorage-0:6.1.7.7-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-activestorage@6.1.7.7-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"product": {
"name": "rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"product_id": "rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-activesupport@6.1.7.7-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.noarch",
"product": {
"name": "rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.noarch",
"product_id": "rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-foreman_rh_cloud@9.0.59-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"product": {
"name": "rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"product_id": "rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-rack@2.2.8.1-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rubygem-rails-0:6.1.7.7-1.el8sat.noarch",
"product": {
"name": "rubygem-rails-0:6.1.7.7-1.el8sat.noarch",
"product_id": "rubygem-rails-0:6.1.7.7-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-rails@6.1.7.7-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rubygem-railties-0:6.1.7.7-2.el8sat.noarch",
"product": {
"name": "rubygem-railties-0:6.1.7.7-2.el8sat.noarch",
"product_id": "rubygem-railties-0:6.1.7.7-2.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-railties@6.1.7.7-2.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"product": {
"name": "rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"product_id": "rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-smart_proxy_ansible@3.5.6-0.1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-0:6.15.5-1.el8sat.noarch",
"product": {
"name": "satellite-0:6.15.5-1.el8sat.noarch",
"product_id": "satellite-0:6.15.5-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite@6.15.5-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-cli-0:6.15.5-1.el8sat.noarch",
"product": {
"name": "satellite-cli-0:6.15.5-1.el8sat.noarch",
"product_id": "satellite-cli-0:6.15.5-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-cli@6.15.5-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-common-0:6.15.5-1.el8sat.noarch",
"product": {
"name": "satellite-common-0:6.15.5-1.el8sat.noarch",
"product_id": "satellite-common-0:6.15.5-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-common@6.15.5-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-capsule-0:6.15.5-1.el8sat.noarch",
"product": {
"name": "satellite-capsule-0:6.15.5-1.el8sat.noarch",
"product_id": "satellite-capsule-0:6.15.5-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-capsule@6.15.5-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-0:3.9.1.12-1.el8sat.noarch",
"product": {
"name": "foreman-0:3.9.1.12-1.el8sat.noarch",
"product_id": "foreman-0:3.9.1.12-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman@3.9.1.12-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"product": {
"name": "foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"product_id": "foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-cli@3.9.1.12-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"product": {
"name": "foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"product_id": "foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-debug@3.9.1.12-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"product": {
"name": "foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"product_id": "foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-dynflow-sidekiq@3.9.1.12-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"product": {
"name": "foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"product_id": "foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-ec2@3.9.1.12-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"product": {
"name": "foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"product_id": "foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-journald@3.9.1.12-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"product": {
"name": "foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"product_id": "foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-libvirt@3.9.1.12-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"product": {
"name": "foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"product_id": "foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-openstack@3.9.1.12-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"product": {
"name": "foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"product_id": "foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-ovirt@3.9.1.12-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"product": {
"name": "foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"product_id": "foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-pcp@3.9.1.12-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"product": {
"name": "foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"product_id": "foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-postgresql@3.9.1.12-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"product": {
"name": "foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"product_id": "foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-redis@3.9.1.12-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-service-0:3.9.1.12-1.el8sat.noarch",
"product": {
"name": "foreman-service-0:3.9.1.12-1.el8sat.noarch",
"product_id": "foreman-service-0:3.9.1.12-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-service@3.9.1.12-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"product": {
"name": "foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"product_id": "foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-telemetry@3.9.1.12-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"product": {
"name": "foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"product_id": "foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-vmware@3.9.1.12-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rubygem-katello-0:4.11.0.19-1.el8sat.noarch",
"product": {
"name": "rubygem-katello-0:4.11.0.19-1.el8sat.noarch",
"product_id": "rubygem-katello-0:4.11.0.19-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-katello@4.11.0.19-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"product": {
"name": "foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"product_id": "foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-fapolicyd@1.0.1-3.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"product": {
"name": "foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"product_id": "foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/foreman-proxy-fapolicyd@1.0.1-3.el8sat?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-0:3.9.1.12-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.src"
},
"product_reference": "foreman-0:3.9.1.12-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-cli-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-debug-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-ec2-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-fapolicyd-0:1.0.1-3.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch"
},
"product_reference": "foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-fapolicyd-0:1.0.1-3.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.src"
},
"product_reference": "foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-installer-1:3.9.3.7-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.noarch"
},
"product_reference": "foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-installer-1:3.9.3.7-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.src"
},
"product_reference": "foreman-installer-1:3.9.3.7-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch"
},
"product_reference": "foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-journald-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-libvirt-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-openstack-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-ovirt-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-pcp-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-postgresql-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch"
},
"product_reference": "foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-redis-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-service-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-service-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-telemetry-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-vmware-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch"
},
"product_reference": "pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pulpcore-obsolete-packages-0:1.0-10.el8pc.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.src"
},
"product_reference": "pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "puppetserver-0:7.17.2-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.noarch"
},
"product_reference": "puppetserver-0:7.17.2-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "puppetserver-0:7.17.2-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.src"
},
"product_reference": "puppetserver-0:7.17.2-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pulp-container-0:2.16.9-2.el8pc.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:python-pulp-container-0:2.16.9-2.el8pc.src"
},
"product_reference": "python-pulp-container-0:2.16.9-2.el8pc.src",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-pulp-container-0:2.16.9-2.el8pc.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch"
},
"product_reference": "python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch"
},
"product_reference": "rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-activesupport-0:6.1.7.7-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.src"
},
"product_reference": "rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-rack-0:2.2.8.1-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.noarch"
},
"product_reference": "rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-rack-0:2.2.8.1-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.src"
},
"product_reference": "rubygem-rack-0:2.2.8.1-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch"
},
"product_reference": "rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src"
},
"product_reference": "rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.15.5-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.noarch"
},
"product_reference": "satellite-0:6.15.5-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.15.5-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.src"
},
"product_reference": "satellite-0:6.15.5-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-capsule-0:6.15.5-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.5-1.el8sat.noarch"
},
"product_reference": "satellite-capsule-0:6.15.5-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-cli-0:6.15.5-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:satellite-cli-0:6.15.5-1.el8sat.noarch"
},
"product_reference": "satellite-cli-0:6.15.5-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-common-0:6.15.5-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-capsule:satellite-common-0:6.15.5-1.el8sat.noarch"
},
"product_reference": "satellite-common-0:6.15.5-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-0:3.9.1.12-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.src"
},
"product_reference": "foreman-0:3.9.1.12-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-cli-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-debug-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-ec2-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-journald-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-libvirt-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-openstack-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-ovirt-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-pcp-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-postgresql-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-redis-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-service-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-service-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-service-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-telemetry-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-vmware-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.15.5-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.noarch"
},
"product_reference": "satellite-0:6.15.5-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.15.5-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.src"
},
"product_reference": "satellite-0:6.15.5-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-capsule-0:6.15.5-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:satellite-capsule-0:6.15.5-1.el8sat.noarch"
},
"product_reference": "satellite-capsule-0:6.15.5-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-cli-0:6.15.5-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:satellite-cli-0:6.15.5-1.el8sat.noarch"
},
"product_reference": "satellite-cli-0:6.15.5-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-common-0:6.15.5-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15-utils:satellite-common-0:6.15.5-1.el8sat.noarch"
},
"product_reference": "satellite-common-0:6.15.5-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-0:3.9.1.12-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.src"
},
"product_reference": "foreman-0:3.9.1.12-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-cli-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-cli-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-debug-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-debug-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-ec2-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-ec2-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-fapolicyd-0:1.0.1-3.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch"
},
"product_reference": "foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-fapolicyd-0:1.0.1-3.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.src"
},
"product_reference": "foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-installer-1:3.9.3.7-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.noarch"
},
"product_reference": "foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-installer-1:3.9.3.7-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.src"
},
"product_reference": "foreman-installer-1:3.9.3.7-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch"
},
"product_reference": "foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-journald-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-journald-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-libvirt-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-openstack-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-openstack-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-ovirt-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-pcp-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-pcp-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-postgresql-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch"
},
"product_reference": "foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-redis-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-redis-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-service-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-service-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-service-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-telemetry-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "foreman-vmware-0:3.9.1.12-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:foreman-vmware-0:3.9.1.12-1.el8sat.noarch"
},
"product_reference": "foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch"
},
"product_reference": "pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "pulpcore-obsolete-packages-0:1.0-10.el8pc.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.src"
},
"product_reference": "pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "puppetserver-0:7.17.2-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.noarch"
},
"product_reference": "puppetserver-0:7.17.2-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "puppetserver-0:7.17.2-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.src"
},
"product_reference": "puppetserver-0:7.17.2-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pulp-container-0:2.16.9-2.el8pc.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:python-pulp-container-0:2.16.9-2.el8pc.src"
},
"product_reference": "python-pulp-container-0:2.16.9-2.el8pc.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-pulp-container-0:2.16.9-2.el8pc.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch"
},
"product_reference": "python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-actioncable-0:6.1.7.7-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.noarch"
},
"product_reference": "rubygem-actioncable-0:6.1.7.7-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-actioncable-0:6.1.7.7-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.src"
},
"product_reference": "rubygem-actioncable-0:6.1.7.7-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-actionmailbox-0:6.1.7.7-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.noarch"
},
"product_reference": "rubygem-actionmailbox-0:6.1.7.7-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-actionmailbox-0:6.1.7.7-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.src"
},
"product_reference": "rubygem-actionmailbox-0:6.1.7.7-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-actionmailer-0:6.1.7.7-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.noarch"
},
"product_reference": "rubygem-actionmailer-0:6.1.7.7-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-actionmailer-0:6.1.7.7-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.src"
},
"product_reference": "rubygem-actionmailer-0:6.1.7.7-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-actionpack-0:6.1.7.7-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.noarch"
},
"product_reference": "rubygem-actionpack-0:6.1.7.7-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-actionpack-0:6.1.7.7-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.src"
},
"product_reference": "rubygem-actionpack-0:6.1.7.7-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-actiontext-0:6.1.7.7-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.noarch"
},
"product_reference": "rubygem-actiontext-0:6.1.7.7-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-actiontext-0:6.1.7.7-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.src"
},
"product_reference": "rubygem-actiontext-0:6.1.7.7-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-actionview-0:6.1.7.7-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.noarch"
},
"product_reference": "rubygem-actionview-0:6.1.7.7-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-actionview-0:6.1.7.7-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.src"
},
"product_reference": "rubygem-actionview-0:6.1.7.7-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-activejob-0:6.1.7.7-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.noarch"
},
"product_reference": "rubygem-activejob-0:6.1.7.7-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-activejob-0:6.1.7.7-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.src"
},
"product_reference": "rubygem-activejob-0:6.1.7.7-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-activemodel-0:6.1.7.7-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.noarch"
},
"product_reference": "rubygem-activemodel-0:6.1.7.7-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-activemodel-0:6.1.7.7-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.src"
},
"product_reference": "rubygem-activemodel-0:6.1.7.7-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-activerecord-0:6.1.7.7-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.noarch"
},
"product_reference": "rubygem-activerecord-0:6.1.7.7-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-activerecord-0:6.1.7.7-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.src"
},
"product_reference": "rubygem-activerecord-0:6.1.7.7-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-activestorage-0:6.1.7.7-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.noarch"
},
"product_reference": "rubygem-activestorage-0:6.1.7.7-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-activestorage-0:6.1.7.7-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.src"
},
"product_reference": "rubygem-activestorage-0:6.1.7.7-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch"
},
"product_reference": "rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-activesupport-0:6.1.7.7-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.src"
},
"product_reference": "rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.noarch"
},
"product_reference": "rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.src"
},
"product_reference": "rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-katello-0:4.11.0.19-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.noarch"
},
"product_reference": "rubygem-katello-0:4.11.0.19-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-katello-0:4.11.0.19-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.src"
},
"product_reference": "rubygem-katello-0:4.11.0.19-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-rack-0:2.2.8.1-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.noarch"
},
"product_reference": "rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-rack-0:2.2.8.1-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.src"
},
"product_reference": "rubygem-rack-0:2.2.8.1-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-rails-0:6.1.7.7-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.noarch"
},
"product_reference": "rubygem-rails-0:6.1.7.7-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-rails-0:6.1.7.7-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.src"
},
"product_reference": "rubygem-rails-0:6.1.7.7-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-railties-0:6.1.7.7-2.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.noarch"
},
"product_reference": "rubygem-railties-0:6.1.7.7-2.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-railties-0:6.1.7.7-2.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.src"
},
"product_reference": "rubygem-railties-0:6.1.7.7-2.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch"
},
"product_reference": "rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src"
},
"product_reference": "rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.15.5-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.noarch"
},
"product_reference": "satellite-0:6.15.5-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.15.5-1.el8sat.src as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.src"
},
"product_reference": "satellite-0:6.15.5-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-capsule-0:6.15.5-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:satellite-capsule-0:6.15.5-1.el8sat.noarch"
},
"product_reference": "satellite-capsule-0:6.15.5-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-cli-0:6.15.5-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:satellite-cli-0:6.15.5-1.el8sat.noarch"
},
"product_reference": "satellite-cli-0:6.15.5-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-common-0:6.15.5-1.el8sat.noarch as a component of Red Hat Satellite 6.15 for RHEL 8",
"product_id": "8Base-satellite-6.15:satellite-common-0:6.15.5-1.el8sat.noarch"
},
"product_reference": "satellite-common-0:6.15.5-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.15"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-23342",
"cwe": {
"id": "CWE-385",
"name": "Covert Timing Channel"
},
"discovery_date": "2024-01-23T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-utils:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.src",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.noarch",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.src",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-common-0:6.15.5-1.el8sat.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2259780"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `ecdsa` PyPI package, a pure Python implementation of ECC (Elliptic Curve Cryptography) with support for ECDSA (Elliptic Curve Digital Signature Algorithm), EdDSA (Edwards-curve Digital Signature Algorithm) and ECDH (Elliptic Curve Diffie-Hellman). Versions 0.18.0 and prior may be vulnerable to the Minerva attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python-ecdsa: vulnerable to the Minerva attack",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-satellite-6.15-capsule:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15-capsule:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch"
],
"known_not_affected": [
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-utils:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.src",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.noarch",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.src",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-common-0:6.15.5-1.el8sat.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-23342"
},
{
"category": "external",
"summary": "RHBZ#2259780",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259780"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-23342",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23342"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-23342",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-23342"
},
{
"category": "external",
"summary": "https://github.com/tlsfuzzer/python-ecdsa/blob/master/SECURITY.md",
"url": "https://github.com/tlsfuzzer/python-ecdsa/blob/master/SECURITY.md"
},
{
"category": "external",
"summary": "https://github.com/tlsfuzzer/python-ecdsa/security/advisories/GHSA-wj6h-64fc-37mp",
"url": "https://github.com/tlsfuzzer/python-ecdsa/security/advisories/GHSA-wj6h-64fc-37mp"
},
{
"category": "external",
"summary": "https://minerva.crocs.fi.muni.cz/",
"url": "https://minerva.crocs.fi.muni.cz/"
},
{
"category": "external",
"summary": "https://securitypitfalls.wordpress.com/2018/08/03/constant-time-compare-in-python/",
"url": "https://securitypitfalls.wordpress.com/2018/08/03/constant-time-compare-in-python/"
}
],
"release_date": "2024-01-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-04T20:43:54+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_satellite/6.15/html/updating_red_hat_satellite/index",
"product_ids": [
"8Base-satellite-6.15-capsule:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15-capsule:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10806"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15-capsule:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15-capsule:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-utils:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.src",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.noarch",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.src",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-common-0:6.15.5-1.el8sat.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "python-ecdsa: vulnerable to the Minerva attack"
},
{
"cve": "CVE-2024-25126",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-02-22T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15-capsule:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15-capsule:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-utils:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.src",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.noarch",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.src",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-common-0:6.15.5-1.el8sat.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2265593"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service (DoS) vulnerability was found in rubygem-rack in how it parses Content-Type. Carefully crafted content type headers can cause Rack\u2019s media type parser to take much longer than expected, leading to a possible denial of service vulnerability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rubygem-rack: Denial of Service Vulnerability in Rack Content-Type Parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.src"
],
"known_not_affected": [
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15-capsule:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15-capsule:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-utils:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.src",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.noarch",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.src",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-common-0:6.15.5-1.el8sat.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-25126"
},
{
"category": "external",
"summary": "RHBZ#2265593",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265593"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-25126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25126"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-25126",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-25126"
},
{
"category": "external",
"summary": "https://discuss.rubyonrails.org/t/denial-of-service-vulnerability-in-rack-content-type-parsing/84941",
"url": "https://discuss.rubyonrails.org/t/denial-of-service-vulnerability-in-rack-content-type-parsing/84941"
}
],
"release_date": "2024-02-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-04T20:43:54+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_satellite/6.15/html/updating_red_hat_satellite/index",
"product_ids": [
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10806"
},
{
"category": "workaround",
"details": "No mitigation is currently available for this vulnerability. The recommendation is to perform updates as soon as they are available.",
"product_ids": [
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15-capsule:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15-capsule:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-utils:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.src",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.noarch",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.src",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-common-0:6.15.5-1.el8sat.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15-capsule:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15-capsule:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-utils:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.src",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.noarch",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.src",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-common-0:6.15.5-1.el8sat.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "rubygem-rack: Denial of Service Vulnerability in Rack Content-Type Parsing"
},
{
"cve": "CVE-2024-26141",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-02-22T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15-capsule:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15-capsule:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-utils:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.src",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.noarch",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.src",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-common-0:6.15.5-1.el8sat.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2265594"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service (DoS) vulnerability was found in rubygem-rack in how it parses Range Header. Carefully crafted range headers can cause a server to respond with an unexpectedly large response. Responding with large responses could lead to a denial of service issue.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rubygem-rack: Possible DoS Vulnerability with Range Header in Rack",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat rates this vulnerability as a Moderate impact as this requires a specifically crafted response.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.src"
],
"known_not_affected": [
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15-capsule:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15-capsule:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-utils:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.src",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.noarch",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.src",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-common-0:6.15.5-1.el8sat.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-26141"
},
{
"category": "external",
"summary": "RHBZ#2265594",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265594"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-26141",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26141"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-26141",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26141"
},
{
"category": "external",
"summary": "https://discuss.rubyonrails.org/t/possible-dos-vulnerability-with-range-header-in-rack/84944",
"url": "https://discuss.rubyonrails.org/t/possible-dos-vulnerability-with-range-header-in-rack/84944"
}
],
"release_date": "2024-02-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-04T20:43:54+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_satellite/6.15/html/updating_red_hat_satellite/index",
"product_ids": [
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10806"
},
{
"category": "workaround",
"details": "No mitigation is currently available for this vulnerability. The recommendation is to perform updates as soon as they are available.",
"product_ids": [
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15-capsule:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15-capsule:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-utils:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.src",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.noarch",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.src",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-common-0:6.15.5-1.el8sat.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15-capsule:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15-capsule:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-utils:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.src",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.noarch",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.src",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-common-0:6.15.5-1.el8sat.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "rubygem-rack: Possible DoS Vulnerability with Range Header in Rack"
},
{
"cve": "CVE-2024-26144",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2024-02-26T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15-capsule:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15-capsule:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-utils:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.src",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.noarch",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.src",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-common-0:6.15.5-1.el8sat.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2266063"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Active Storage that may lead to a sensitive session information leak. By default, Active Storage sends a `Set-Cookie` header along with the user\u2019s session cookie when serving blobs and sets `Cache-Control` to public. Certain proxies may cache `Set-Cookie`, leading to an information leak.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rubygem-activestorage: Possible Sensitive Session Information Leak in Active Storage",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.src"
],
"known_not_affected": [
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15-capsule:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15-capsule:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-utils:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.src",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.noarch",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.src",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-common-0:6.15.5-1.el8sat.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-26144"
},
{
"category": "external",
"summary": "RHBZ#2266063",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266063"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-26144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26144"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-26144",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26144"
},
{
"category": "external",
"summary": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activestorage/CVE-2024-26144.yml",
"url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activestorage/CVE-2024-26144.yml"
}
],
"release_date": "2024-02-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-04T20:43:54+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_satellite/6.15/html/updating_red_hat_satellite/index",
"product_ids": [
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10806"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15-capsule:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15-capsule:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-utils:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.src",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.noarch",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.src",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-common-0:6.15.5-1.el8sat.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "rubygem-activestorage: Possible Sensitive Session Information Leak in Active Storage"
},
{
"cve": "CVE-2024-26146",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-02-22T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15-capsule:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15-capsule:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-utils:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.src",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.noarch",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.src",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-common-0:6.15.5-1.el8sat.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2265595"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service (DoS) vulnerability was found in rubygem-rack in how it parses Rack Header. Carefully crafted headers can cause header parsing in Rack to take longer than expected, resulting in a possible denial of service issue. Accept and Forwarded headers are impacted.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rubygem-rack: Possible Denial of Service Vulnerability in Rack Header Parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.src"
],
"known_not_affected": [
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15-capsule:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15-capsule:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-utils:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.src",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.noarch",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.src",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-common-0:6.15.5-1.el8sat.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-26146"
},
{
"category": "external",
"summary": "RHBZ#2265595",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265595"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-26146",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26146"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-26146",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26146"
},
{
"category": "external",
"summary": "https://discuss.rubyonrails.org/t/possible-denial-of-service-vulnerability-in-rack-header-parsing/84942",
"url": "https://discuss.rubyonrails.org/t/possible-denial-of-service-vulnerability-in-rack-header-parsing/84942"
}
],
"release_date": "2024-02-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-04T20:43:54+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_satellite/6.15/html/updating_red_hat_satellite/index",
"product_ids": [
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10806"
},
{
"category": "workaround",
"details": "No mitigation is currently available for this vulnerability. The recommendation is to perform updates as soon as they are available.",
"product_ids": [
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15-capsule:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15-capsule:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-utils:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.src",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.noarch",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.src",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-common-0:6.15.5-1.el8sat.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15-capsule:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15-capsule:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15-capsule:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15-capsule:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-capsule:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-capsule:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15-utils:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15-utils:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15-utils:satellite-common-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-0:3.9.1.12-1.el8sat.src",
"8Base-satellite-6.15:foreman-cli-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-debug-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-dynflow-sidekiq-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ec2-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-fapolicyd-0:1.0.1-3.el8sat.src",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-installer-1:3.9.3.7-1.el8sat.src",
"8Base-satellite-6.15:foreman-installer-katello-1:3.9.3.7-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-journald-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-libvirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-openstack-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-ovirt-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-pcp-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-postgresql-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-proxy-fapolicyd-0:1.0.1-3.el8sat.noarch",
"8Base-satellite-6.15:foreman-redis-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-service-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-telemetry-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:foreman-vmware-0:3.9.1.12-1.el8sat.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.noarch",
"8Base-satellite-6.15:pulpcore-obsolete-packages-0:1.0-10.el8pc.src",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.noarch",
"8Base-satellite-6.15:puppetserver-0:7.17.2-1.el8sat.src",
"8Base-satellite-6.15:python-pulp-container-0:2.16.9-2.el8pc.src",
"8Base-satellite-6.15:python3.11-pulp-container-0:2.16.9-2.el8pc.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actioncable-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailbox-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionmailer-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionpack-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actiontext-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-actionview-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activejob-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activemodel-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activerecord-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activestorage-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-activesupport-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-foreman_rh_cloud-0:9.0.59-1.el8sat.src",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-katello-0:4.11.0.19-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rack-0:2.2.8.1-1.el8sat.src",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-rails-0:6.1.7.7-1.el8sat.src",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.noarch",
"8Base-satellite-6.15:rubygem-railties-0:6.1.7.7-2.el8sat.src",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.noarch",
"8Base-satellite-6.15:rubygem-smart_proxy_ansible-0:3.5.6-0.1.el8sat.src",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-0:6.15.5-1.el8sat.src",
"8Base-satellite-6.15:satellite-capsule-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-cli-0:6.15.5-1.el8sat.noarch",
"8Base-satellite-6.15:satellite-common-0:6.15.5-1.el8sat.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "rubygem-rack: Possible Denial of Service Vulnerability in Rack Header Parsing"
}
]
}
gsd-2024-26144
Vulnerability from gsd
Modified
2024-02-15 06:02
Details
Rails is a web-application framework. Starting with version 5.2.0, there is a possible sensitive session information leak in Active Storage. By default, Active Storage sends a Set-Cookie header along with the user's session cookie when serving blobs. It also sets Cache-Control to public. Certain proxies may cache the Set-Cookie, leading to an information leak. The vulnerability is fixed in 7.0.8.1 and 6.1.7.7.
Aliases
{
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2024-26144"
],
"details": "Rails is a web-application framework. Starting with version 5.2.0, there is a possible sensitive session information leak in Active Storage. By default, Active Storage sends a Set-Cookie header along with the user\u0027s session cookie when serving blobs. It also sets Cache-Control to public. Certain proxies may cache the Set-Cookie, leading to an information leak. The vulnerability is fixed in 7.0.8.1 and 6.1.7.7.",
"id": "GSD-2024-26144",
"modified": "2024-02-15T06:02:25.165924Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "security-advisories@github.com",
"ID": "CVE-2024-26144",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "rails",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "\u003e= 5.2.0, \u003c 6.1.7.7"
},
{
"version_affected": "=",
"version_value": "\u003e= 7.0.0, \u003c 7.0.8.1"
}
]
}
}
]
},
"vendor_name": "rails"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Rails is a web-application framework. Starting with version 5.2.0, there is a possible sensitive session information leak in Active Storage. By default, Active Storage sends a Set-Cookie header along with the user\u0027s session cookie when serving blobs. It also sets Cache-Control to public. Certain proxies may cache the Set-Cookie, leading to an information leak. The vulnerability is fixed in 7.0.8.1 and 6.1.7.7."
}
]
},
"impact": {
"cvss": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"cweId": "CWE-200",
"lang": "eng",
"value": "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/rails/rails/security/advisories/GHSA-8h22-8cf7-hq6g",
"refsource": "MISC",
"url": "https://github.com/rails/rails/security/advisories/GHSA-8h22-8cf7-hq6g"
},
{
"name": "https://github.com/rails/rails/commit/723f54566023e91060a67b03353e7c03e7436433",
"refsource": "MISC",
"url": "https://github.com/rails/rails/commit/723f54566023e91060a67b03353e7c03e7436433"
},
{
"name": "https://github.com/rails/rails/commit/78fe149509fac5b05e54187aaaef216fbb5fd0d3",
"refsource": "MISC",
"url": "https://github.com/rails/rails/commit/78fe149509fac5b05e54187aaaef216fbb5fd0d3"
},
{
"name": "https://discuss.rubyonrails.org/t/possible-sensitive-session-information-leak-in-active-storage/84945",
"refsource": "MISC",
"url": "https://discuss.rubyonrails.org/t/possible-sensitive-session-information-leak-in-active-storage/84945"
},
{
"name": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activestorage/CVE-2024-26144.yml",
"refsource": "MISC",
"url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activestorage/CVE-2024-26144.yml"
}
]
},
"source": {
"advisory": "GHSA-8h22-8cf7-hq6g",
"discovery": "UNKNOWN"
}
},
"nvd.nist.gov": {
"cve": {
"descriptions": [
{
"lang": "en",
"value": "Rails is a web-application framework. Starting with version 5.2.0, there is a possible sensitive session information leak in Active Storage. By default, Active Storage sends a Set-Cookie header along with the user\u0027s session cookie when serving blobs. It also sets Cache-Control to public. Certain proxies may cache the Set-Cookie, leading to an information leak. The vulnerability is fixed in 7.0.8.1 and 6.1.7.7."
},
{
"lang": "es",
"value": "Rails es un framework de aplicaci\u00f3n web. A partir de la versi\u00f3n 5.2.0, existe una posible fuga de informaci\u00f3n confidencial de la sesi\u00f3n en Active Storage. De forma predeterminada, Active Storage env\u00eda un encabezado Set-Cookie junto con la cookie de sesi\u00f3n del usuario cuando sirve blobs. Tambi\u00e9n configura Cache-Control como p\u00fablico. Ciertos servidores proxy pueden almacenar en cach\u00e9 la Set-Cookie, lo que provoca una fuga de informaci\u00f3n. La vulnerabilidad se solucion\u00f3 en 7.0.8.1 y 6.1.7.7."
}
],
"id": "CVE-2024-26144",
"lastModified": "2024-02-28T14:07:00.563",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 1.4,
"source": "security-advisories@github.com",
"type": "Secondary"
}
]
},
"published": "2024-02-27T16:15:46.970",
"references": [
{
"source": "security-advisories@github.com",
"url": "https://discuss.rubyonrails.org/t/possible-sensitive-session-information-leak-in-active-storage/84945"
},
{
"source": "security-advisories@github.com",
"url": "https://github.com/rails/rails/commit/723f54566023e91060a67b03353e7c03e7436433"
},
{
"source": "security-advisories@github.com",
"url": "https://github.com/rails/rails/commit/78fe149509fac5b05e54187aaaef216fbb5fd0d3"
},
{
"source": "security-advisories@github.com",
"url": "https://github.com/rails/rails/security/advisories/GHSA-8h22-8cf7-hq6g"
},
{
"source": "security-advisories@github.com",
"url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activestorage/CVE-2024-26144.yml"
}
],
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Awaiting Analysis",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-200"
}
],
"source": "security-advisories@github.com",
"type": "Secondary"
}
]
}
}
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.